2270 Open source projects that are alternatives of or similar to Habu

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Chromepass - Hacking Chrome Saved Passwords

Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.

KInspector is an application for analyzing health, performance and security of your Kentico solution.

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

Quick utility to craft executables for pentesting and managing reverse shells

onex is a hacking tool installer and package manager for hackers. Onex is a library of all hacking tools for Termux and other Linux distributions. onex can install any third party tool or any hacking tool for you.

Reliable UDP networking library

A python package for flow network analysis

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

🦄🔒 Awesome list of secrets in environment variables 🖥️

Enables and use of the concept of security in your Delphi applications

Quick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

A light-weight password manager with a focus on simplicity and security

A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.

Reliable & unreliable messages over UDP. Robust message fragmentation & reassembly. P2P networking / NAT traversal. Encryption.

A web application for generating custom XSS payloads

An analytical framework for network traffic and behavioral analytics

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

All that is required to run MobSF in the ci

Web App Pen Tester (Web Interface)

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Do some quick reconnaissance on a domain-based web-application

Repository of my CTF writeups

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

Oracle Database Penetration Testing Reference (10g/11g)

OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

Facebook Write-ups, PoC, and exploitation codes:

Open Redirect scanner - (out of date)

Identify vulnerabilities in running containers, images, hosts and repositories

A modern arpwatch replacement with JSON formatted outputs and easy options to exec commands when network changes are observed.

An object oriented C++ wrapper for CURL (libcurl)

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜

A shot-for-shot remake of the Google Login Page.

Log any method call of object in Objective-C

Hashtopolis - A Hashcat wrapper for distributed hashcracking

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

The POCO C++ Libraries are powerful cross-platform C++ libraries for building network- and internet-based applications that run on desktop, server, mobile, IoT, and embedded systems.

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.

WEB SERVICE SECURITY ASSESSMENT TOOL

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox

Summary of online learning materials

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

wireguard overlay mesh network manager

Web Application Security Scanner

A simple as possible man in the middle written in python using scapy

An NCurses-based TUI application for tracking activity over the CAN bus and decoding messages with provided EDS/OD files.

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

R package for signed networks

Botnet targeting Windows machines written entirely in Python & open source security project.

Tor2web is an HTTP proxy software that enables access to Tor Hidden Services by mean of common web browsers

Linux networking in Go

Awesome Ruby Security resources

🎩 [penetration testing Book], Kali Magic, Cryptography, Hash Crack, Botnet, Rootkit, Malware, Spyware, Python, Go, C|EH.

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

My notes on PentesterLab's Bootcamp series 🕵️

The Hybrid/Multi-cloud IP Service Mesh