889 Open source projects that are alternatives of or similar to Leakscraper

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

Ransom0 is a open source ransomware made with Python, designed to find and encrypt user data.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Find leaked emails with your passwords

Go-deliver is a payload delivery tool coded in Go.

WaTF Bank - What a Terrible Failure Mobile Banking Application for Android and iOS

Authors

BlackRAT - Java Based Remote Administrator Tool

The all-in-one Red Team extension for Web Pentester 🛠

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

A passive subdomain finder

A collection of scripts I've written to help red and blue teams with malware persistence techniques.

KeePass 2.x plugin which imports credentials from various browsers.

Development environment for Meedan Check, a collaborative media annotation platform

Twitter Intelligence OSINT project performs tracking and analysis of the Twitter

🔪 Leak git repositories from misconfigured websites

Python network worm that spreads on the local network and gives the attacker control of these machines.

Test Blue Team detections without running any attack.

The goal of this project is to examine, reverse, and document the different modules available in the Equation Group's DanderSpritz post-exploitation framework leaked by the ShadowBrokers

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

Generates malicious LNK file payloads for data exfiltration

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

small python3 tool to check common vulnerabilities in SMTP servers

一个关于数字隐私搜集、保护、清理集一体的方案,外加开源信息收集(OSINT)对抗

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

Monitor, Alert, and Discover sensitive info and data leakage on Github.

Code from Blackhat Python book

Каталог нетсталкерских ресурсов, команд, инструментов, источников контента.

An extensible application for penetration testers and software developers to decode/encode data into various formats.

Awesome Nmap Grep

Encoder to bypass WAF filters using XOR operations

PowerShell module for KeePass

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

An extensible toolkit providing penetration testers an easy-to-use platform to deploy Access Points during penetration testing and red team engagements.

Subdomain Takeover tool written in Go

An OSINT tool to gather information about the real owner of a phone number

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

A collection of electronic hacker magazines carefully curated over the years from multiple sources

A wrapper for Nmap to quickly run network scans

Our OSCP repo: from popping shells to mental health.

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

Trace Labs OSINT Linux Distribution based on Kali.

Collection of quality safety articles. Awesome articles.

Centralize Vulnerability Assessment and Management for DevSecOps Team

cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources

Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.

Discover internet-wide misconfigurations while drinking coffee

Web hacking framework with tools, exploits by python

A collection of public offensive and defensive security related scripts for InfoSec students.

A container repository for my public web hacks!

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Extensible Red Team Framework