2005 Open source projects that are alternatives of or similar to Jwtxploiter

The Collective. A repo for a collection of red-team projects found mostly on Github.

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Overlord - Red Teaming Infrastructure Automation

Selenium powered Python script to automate searching for vulnerable web apps.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A JWT (JSON Web Token) Encoder & Decoder

无状态子域名爆破工具

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Tool Information Gathering Write By Python.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Search for Directory Traversal Vulnerabilities

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Angular Full Stack project built using Angular, Express, Mongoose and Node. Whole stack in TypeScript.

Find web directories without bruteforce

Library consisting of explanation and implementation of all the existing attacks on various Encryption Systems, Digital Signatures, Key Exchange, Authentication methods along with example challenges from CTFs

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

一个基于 Koa 的 RESTful API 服务脚手架。 A RESTful API generator for Koa

Burp extension to passively scan for applications revealing software version numbers

ctfcli is a tool to manage Capture The Flag events and challenges

🔪 Leak git repositories from misconfigured websites

DLL Password Filter Implant with Exfiltration Capabilities

🗝️ Passwordless OIDC authentication done right

A simple to use, high-performance, Go (golang) MAC signer.

👀在线学习平台，前端主要技术：Angular,后端主要技术：springboot (项目包含前台,后台上传失误,可能丢失代码......分为前台展示系统及后台管理系统。前台系统包含首页门户、多级菜单、问题页面、免费课程、练习页面等模块。 后台管理系统包含课程管理、用户管理、管理员管理、评论管理等模块。系统介绍及详细功能点、技术点见项目内文档描述)

Parse Apple's .p8 private key file and sign JWT with ES256, without third-party dependencies.

Tools to automate and/or expedite response.

an SSO and OAuth / OIDC login solution for Nginx using the auth_request module

C2Hack, sharing tips and tricks for pentesters

Spring extend componets which build from experience of bussiness, let developers to develop with Spring Boot as fast as possible.（基于Spring生态打造的一系列来自业务上的快速开发模块集合。）

protocol fuzzing toolkit

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

JSON Web Token library for Python

PwnableWeb is a suite of web applications for use in information security training.

🔐 JSON Web Token Authentication for Laravel & Lumen

Reversing list

Responsive Command and Control System

A web-based, accessible and open-source port of StegSolve.

An advanced graphical search engine for Exploit-DB

致力于快速开发中小型后台管理系统项目模板(更新中......)

pear，梨子，轻量级的在线项目/任务协作系统，远程办公协作

ZITADEL - Cloud Native Identity and Access Management

A repository of sysmon configuration modules

🦕 basic jwt implementation with CRUD operations using deno + postgres

dnsub一款好用的子域名扫描工具

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Content for hackingthe.cloud

Writeups for HacktheBox 'boot2root' machines

2018强网杯CTF___题目整理

won't maintain

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies