440 Open source projects that are alternatives of or similar to Log Requests To Sqlite

Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

HackBar plugin for Burpsuite

Exploit Pack -The next generation exploit framework

Web Content Discovery Tool

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

A Hashcat wrapper for distributed hashcracking

Gorsair hacks its way into remote docker containers that expose their APIs

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

CVE-2016-8610 (SSL Death Alert) PoC

被动式漏洞扫描系统

A repo with information about security of Ethereum Smart Contracts

InQL - A Burp Extension for GraphQL Security Testing

The Last Web Recon Tool You'll Need

The Shadow Attack Framework

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Hacking Toolkit

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

A Powerful Subdomain Takeover Tool

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Burp extension to passively scan for applications revealing software version numbers

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Simple multi threaded tool to extract domain related data from commoncrawl.org

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Find web directories without bruteforce

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.

Dump exposed HTTP .git fast

Reverse proxies cheatsheet

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

DNS Sub-domain brute forcer, in Python + gevent

Web path scanner

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

Ruby on Rails Phishing Framework

online port scan scraper

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Semi-automatic OSINT framework and package manager

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

无状态子域名爆破工具

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

A curated list of awesome OSCP resources

A web front-end for password cracking and analytics

reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

Interactive Network Scanner

A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords