484 Open source projects that are alternatives of or similar to Jxnet

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

VOIP Security Audit Framework

nnposter's alternate fingerprint dataset for Nmap script http-default-accounts

Find leaked secrets via github search

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

Unit testing framework for test driven security of AWS, GCP, Heroku and more.

Anteater - CI/CD Gate Check Framework

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

Terraform module for creating alarms for tracking important changes and occurrences from cloudtrail.

D4 core software (server and sample sensor client)

三方依赖库扫描系统

A simple tool for interacting with OWASP ZAP from the commandline.

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

A Go implementation of dirsearch.

All-in-one tool for managing vulnerability reports from AppSec pipelines

A simple auditing utility for macOS

IotShark - Monitoring and Analyzing IoT Traffic

A command line security audit tool for Amazon Web Services

proxy poc implementation of STARTTLS stripping attacks

Sniffer is an http packet capture tool, base on golang gopacket(libpcap)

DEPRECATED, bettercap developement moved here: https://github.com/bettercap/bettercap

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Scripts to gather system configuration information for offline/remote auditing

Linux命令转发记录

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

pentest framework

A Blazing fast Security Auditing tool for Kubernetes

NebulousAD automated credential auditing tool.

A Python SDK for Tufin Orchestration Suite

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Chat Bot Security Checklist

Menu driven wordlist generator in C++

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

🎯 Server Side Template Injection Payloads

A Ruby framework designed to aid in the penetration testing of WordPress systems.

Check read, write permissions on S3 buckets in your account

Custom memory allocator that helps discover reads from uninitialized memory

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Roslyn analyzers that aim to help security audit on .NET applications.

🕵️‍♀️ MixAudit provides a mix deps.audit task to scan a project Mix dependencies for known Elixir security vulnerabilities

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

A tool for auditing security properties of GCP projects.

Directory Services Internals (DSInternals) PowerShell Module and Framework

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Ninjaberry: Raspberry Pi UI for @bettercap

Google Cloud Platform Security Tool

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

grep rough audit - source code auditing tool

被动式漏洞扫描系统

Wordpress Vulnerability Scanner

A static analysis security vulnerability scanner for Ruby on Rails applications

Identify hardcoded secrets and dangerous behaviours

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)