1507 Open source projects that are alternatives of or similar to Mitm Scripts

Powerful friendly HTTP mock server & proxy

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

中国最大的API接口管理平台，3.x开源发行版，支持多国语言[英语、简体中文、繁体中文]

Attack Surface Management Platform | Sn1perSecurity LLC

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Yet Another PHP Shell - The most complete PHP reverse shell

Man in the middle testing

Smocker is a simple and efficient HTTP mock server and proxy.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Wiremock UI - Tool for creating mock servers, proxies servers and proxies servers with the option to save the data traffic from an existing API or Site.

Mocks Server monorepo

Go library for credentials recovery

Service Virtualized HTTP - to help service test automation stay fast and consistent

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

A tool to automate penetration tests

gomitmproxy是想用golang语言实现[mitmproxy]，实现http(s)代理

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Hacking Toolkit

移动应用插件化测试工作台

An HTTP/HTTPS intercept proxy written in Go.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

unix SSH post-exploitation 1337 tool

Automated Pentest Tools Designed For Parrot Linux

Tools used for Penetration testing / Red Teaming

Test Automation Made Simple

🐈 Mocat is a mocking toolbar that allows you to interactively develop and test network requests.

Multi OTP Spam Amp/Paralell threads

Hacking, pen-testing, and cyber-security related tools built with Python.

Subdomain enumeration through various techniques

DNS mock server written on 💎 Ruby. Mimic any DNS records for your test environment with fake DNS server.

MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…

Tool Information Gathering Write By Python.

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Kubectl plugin to interactively proxy Kubernetes Services with ease

开发者边车，github打不开，github加速，git clone加速，git release下载加速，stackoverflow加速

network reconnaissance toolkit

Multi source CVE/exploit parser.

A fast web directory/file enumeration tool written in Rust

Sharingan（写轮眼）是一个基于golang的流量录制回放工具，适合项目重构、回归测试等。

hydra

Web path scanner

Private proxy solution & network troubleshooting tool.

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Test Automation Made Simple

Venom - A Multi-hop Proxy for Penetration Testers

Swiss Army knife Proxy tool for HTTP/HTTPS traffic capture, manipulation, and replay on the go.

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Penetration Testing Platform

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Quick SQL Scanner, Dorker, Webshell injector PHP

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

MockServer javascript client for browsers, Node.js or any grunt build

⚡⚡⚡Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on Network monitoring, controls & Application development, testing, debugging

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python