3903 Open source projects that are alternatives of or similar to Jok3r

CMS Detection and Exploit Kit based on Whatcms.org API

Official Black Hat Arsenal Security Tools Repository

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Cameradar hacks its way into RTSP videosurveillance cameras

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

Micro-framework for rapid development of reusable security tools

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Intelligence and Reconnaissance Package/Bundle installer.

Ghidra Analysis Enhancer 🐉

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

安全编排与自动化响应平台

SEC分布式资产扫描系统

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

All-in-one tool for managing vulnerability reports from AppSec pipelines

Open-Source Security Architecture | 开源安全架构

Web path scanner

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Web Application Security Scanner Framework

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Its a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram

Web Recon & Exploitation Tool.

Declarative penetration testing orchestration framework

Free advanced and modern Windows botnet with a nice and secure PHP panel.

Complete Listing and Usage of Tools used for Ethical Hacking

Jam all wifi clients/routers.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Web Scan Lazy Tools - Python Package

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

Hacker101 CTF Writeup

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

An automated target reconnaissance pipeline.

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

A high performance network library

Minimalistic GraphQL framework

Personal CTF Toolkit

Framework for building Windows malware, written in C++

Mass scan IPs for vulnerable services

平常看到好的渗透hacking工具和多领域效率工具的集合

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

OWASP WEB Directory Scanner

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

A list of web application security

Information Gathering tool for a Website or IP address

个人笔记汇总

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

OSINT

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

SSL and TLS protocol test suite and fuzzer

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

network reconnaissance toolkit

Secure, Unified, Powerful and Extensible Rust Android Analyzer