2494 Open source projects that are alternatives of or similar to Ladon

Web Scan Lazy Tools - Python Package

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

DLL Password Filter Implant with Exfiltration Capabilities

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)

Awesome hacking is an awesome collection of hacking tools.

Bandit is a tool designed to find common security issues in Python code.

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

A list of web application security

Information Gathering tool for a Website or IP address

A Python Tool For google Hacking

A collection of personal scripts used in hacking excercises.

Working Python test and PoC for CVE-2018-11776, includes Docker lab

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

swiss army knife for hackers

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

CODO运维工具支持：告警管理、告警自愈、项目管理、事件管理、加密解密、随机密码、提醒管理等

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Sifter aims to be a fully loaded Op Centre for Pentesters

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Quickly analyze and reverse engineer Android packages

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Bluetooth scanner for local devices that may be vulnerable to Blueborne exploit

Secure, Unified, Powerful and Extensible Rust Android Analyzer

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

A collection of hacking / penetration testing resources to make you better!

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Penetration Testing notes, resources and scripts

Automated Mass Exploiter

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

🔒Unified API for password hashing algorithms

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Open source all-in-one CLI tool to semi-automate pentesting.

漏洞利用框架模块分享仓库

A tool to test security of json web token

The ultimate WinRM shell for hacking/pentesting

a javascript static security analysis tool

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

Miscellaneous exploit code

Collection of quality safety articles. Awesome articles.

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

An easy to use, light-weight, on-demand virus scanner for Linux systems

Awesome Vulnerable Applications

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Tool made to automate tasks of pentesting.

Open source application to instantly remediate common security issues through the use of AWS Config

Cross platform PoC ransomware written in Go

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

Hashcat web interface