399 Open source projects that are alternatives of or similar to Mosl

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Resources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

Find cloud assets that no one wants exposed 🔎 ☁️

A set of recipes useful in pentesting and red teaming scenarios

Username enumeration and password spraying tool aimed at Microsoft O365.

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Reverse shell generator written in Python 3.

PoC tool to demonstrate vulnerabilities in wireless input devices

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

Software tools for Nordic Semiconductor nRF24-based devices like wireless keyboards, mice, and presenters

Collecting & Hunting for IOCs with gusto and style

Explore Indicators of Compromise Automatically

A tool to test security of json web token

Forseti Security

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

📷 ViewFinder - NodeJS product to make the browser into a web app. WTF RBI. CBII. Remote browser isolation, embeddable browserview, secure chrome saas. Licenses, managed, self-hosted. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but open source with free live demos available now! Also, integrated RBI/CDR with CDR from https://github.com/dosyago/p2%2e

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

All-in-one tool for managing vulnerability reports from AppSec pipelines

Android library to reveal or obfuscate strings and assets at runtime

Friends don't let friends leak secrets on their terminal window 🙈

A note-taking macOS app for penetration-testers.

Kali Linux 工具合集中文说明书

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)

安全总是无处不在...

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.

Command-line passphrase generator

Some of the best web shells that you might need!

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Curated List of Privacy Respecting Services and Software

IBM Fully Homomorphic Encryption Toolkit For Linux. This toolkit is a Linux based Docker container that demonstrates computing on encrypted data without decrypting it! The toolkit ships with two demos including a fully encrypted Machine Learning inference with a Neural Network and a Privacy-Preserving key-value search.

Light NodeJS rate limiting and response delaying using Redis - including Express middleware.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

Scripts to gather system configuration information for offline/remote auditing

NebulousAD automated credential auditing tool.

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

Set of tools to audit SIP based VoIP Systems

Micro-framework for rapid development of reusable security tools

Endpoint detection & Malware analysis software

Linux命令转发记录

A binary analysis framework

Advanced Netstat Using Python For Windows

The request.bin of DNS request

An ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)

DNS-Discovery is a multithreaded subdomain bruteforcer.

Find web directories without bruteforce

Ghidra Analysis Enhancer 🐉

Openwrt 18.06.5 featured with the Exein's security framework

An application to assist in the organization and prioritization of software security activities.

A Machine Learning approach for classifying a file as Malicious or Legitimate

Tool made to automate tasks of pentesting.

snopf USB password token

Official Black Hat Arsenal Security Tools Repository

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

安全编排与自动化响应平台

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

Tools of "The Bug Hunters Methodology V2 by @jhaddix"

The dum^H^H^Hsimplest encryption tool in the world.

The clever vulnerability dependency finder