421 Open source projects that are alternatives of or similar to Leviathan

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

Automatic SQL injection and database takeover tool

Database firewall written in Go

Exploit Pack -The next generation exploit framework

Steeltoe samples and reference application collection

An IDA Pro plugin to examine the glibc heap, focused on exploit development

Awesome tools to exploit Windows !

Spring Cloud Consul

Nmap - the Network Mapper. Github mirror of official SVN repository.

Best microservices framework in Go, like alibaba Dubbo, but with more features, Scale easily. Try it. Test it. If you feel it's better, use it! 𝐉𝐚𝐯𝐚有𝐝𝐮𝐛𝐛𝐨, 𝐆𝐨𝐥𝐚𝐧𝐠有𝐫𝐩𝐜𝐱!

Janusec Application Gateway, Provides Fast and Secure Application Delivery. JANUSEC应用网关，提供快速、安全的应用交付。

Attify OS - Distro for pentesting IoT devices

Generalized proof of concept tool which can be used for drop-in bruteforce protection when needed.

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

jSQL Injection is a Java application for automatic SQL database injection.

hydra

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

a very fast brute force webshell password tool

Notes for taking the OSCP in 2097. Read in book form on GitBook

Bruteforce database

A collection where my current and future writeups for exploits/CTF will go

🔒Unified API for password hashing algorithms

Enumeration sub domains(枚举子域名)

Old repo for Linkerd 1.x. See the linkerd2 repo for Linkerd 2.x.

fsociety Hacking Tools Pack – A Penetration Testing Framework

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Linux Binary Exploitation

Steeltoe .NET Core Components: CircuitBreaker, Configuration, Connectors, Discovery, Logging, Management, and Security

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Modern tactical exploitation toolkit.

🎯 SQL Injection Payload List

Docker containers running Alpine Linux and s6 for process management. Solid, reliable containers.

Advanced dork Search & Mass Exploit Scanner

Damn Vulnerable Web Application (DVWA)

Advanced reconnaissance utility

Demo for Spring Boot 2 and Spring Cloud microservices with distributed configuration (Spring Cloud Config), service discovery (Eureka), API gateway (Spring Cloud Gateway, Zuul), Swagger2 API documentation, logs correlation using Spring Cloud Sleuth and many more

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.

macOS keychain cracking tool

The best way to scan for weak ssh passwords on your network

Fully Decentralized Fully Replicated Key/Value Store

mXtract - Memory Extractor & Analyzer

Web path scanner

Service registry bridge for Docker with pluggable adapters

Secure Shell Bruteforcer — A faster & simpler way to bruteforce SSH server

UNIX-like reverse engineering framework and command-line toolset.

ScaleCube Services is a high throughput, low latency reactive microservices library built to scale. it features: API-Gateways, service-discovery, service-load-balancing, the architecture supports plug-and-play service communication modules and features. built to provide performance and low-latency real-time stream-processing. its open and designed to accommodate changes. (no sidecar in a form of broker or any kind)

Spring Cloud Zookeeper

Solve your DNS hosts from your docker containers, then from your local configuration, then from internet

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 14 vulnerability techniques)

DoraRPC is an RPC For the PHP MicroService by The Swoole

Course materials for Modern Binary Exploitation by RPISEC

A high available service discovery & registration & fault-tolerance framework

massive SQL injection vulnerability scanner