850 Open source projects that are alternatives of or similar to Howtohunt

Default signature for Jaeles Scanner

A vulnerability scanner for container images and filesystems

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

The repo contains the source code for all the tutorials on the FilledStacks Youtube channel.

https://cc-mnnit.github.io/2018-19-Classes/ - 🎒 💻 Material for Computer Club Classes

A curated list of resources for creating applications with hyperledger fabric

A curated list of awesome baseband research resources

Processing reference, examples, tutorials, and website

CVE-2017-9506 - SSRF

Simple DNS Rebinding Service

Find exploits in local and online databases instantly

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

Your Google Recon is Now Automated

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Fish detection using Open Images Dataset and Tensorflow Object Detection

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Linux Kernel exploitation Tutorial.

⚛ 50 project ideas to learn by doing complete with project briefs, layout ideas, and resources!

A directory of hardware related libs, tools, and tutorials for Go

OSINT

Safari local file reader

平常看到好的渗透hacking工具和多领域效率工具的集合

My open source project links, programming and software development related code and tutorials are in this repo. Content types: Python, JavaScript, Dart | Django, React, Flutter, React-Native etc.

A fast DOM based XSS vulnerability scanner with simplicity.

Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.

Android Kernel Exploitation

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

Online examples from "Boost C++ Application Development Cookbook":

XVWA is intentionally designed with many security flaws and enough technical ground to upskill application security knowledge. This whole idea is to evangelize web application security issues. Do let us know your suggestions for improvement or any more vulnerability you would like to see in XVWA future releases.

A free, online learning platform to make quality education accessible for all.

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

Joint Advanced Defect assEsment for android applications

Original Automated CVE Checking Tool

A MongoDB importer and API for Project Sonars DNS datasets

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Automating XSS using Bash

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

The format of various s3 buckets is convert in one format. for bugbounty and security testing.

Automation for javascript recon in bug bounty.

A comprehensive list of pytorch related content on github,such as different models,implementations,helper libraries,tutorials etc.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Here you can get full exploit for SAP NetWeaver AS JAVA

An automated approach to performing recon for bug bounty hunting and penetration testing.

📔 Curated list of resources: books, videos, articles, speaker decks, tools about using the JAMstack (A modern web development architecture for creating fast, secure and dynamic websites)

📒 Next-Generation Interactive Notebooks

Course materials for Dartmouth Course: Storytelling with Data (PSYC 81.09).

An automated target reconnaissance pipeline.

Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.

🎓 Collection of useful PHP frequently asked questions, articles and best practices

Create actionable data from your Vulnerability Scans

Really quickly build APKs on handheld device (smartphone and tablet) in Amazon, Android, Chromebook, PRoot and Windows📲 See https://buildapks.github.io/docsBuildAPKs/setup to start building APKs.

A tool to check a bunch of URLs that contain reflecting params.

📙 HOTTBOX: Higher Order Tensors ToolBOX. Tutorials

Potentially dangerous files

A tool for testing subdomain takeover possibilities at a mass scale.

Dump exposed HTTP .git fast

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Source for the OpenCV with Java tutorials

🥇掘金翻译计划，可能是世界最大最好的英译中技术社区，最懂读者和译者的翻译平台：