578 Open source projects that are alternatives of or similar to Nebulousad

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Semi-automatic OSINT framework and package manager

🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021

Linting tool for CloudFormation templates

A library to check for compromised passwords

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

Unit testing framework for test driven security of AWS, GCP, Heroku and more.

Find exploit tool

Penetrum LLC opensource security tool list.

Ethereum recon and exploitation tool.

Cloud Discovery provides a point in time enumeration of all the cloud native platform services

Enumeration sub domains(枚举子域名)

Directory Services Internals (DSInternals) PowerShell Module and Framework

A web front-end for password cracking and analytics

The dum^H^H^Hsimplest encryption tool in the world.

📷 ViewFinder - NodeJS product to make the browser into a web app. WTF RBI. CBII. Remote browser isolation, embeddable browserview, secure chrome saas. Licenses, managed, self-hosted. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but open source with free live demos available now! Also, integrated RBI/CDR with CDR from https://github.com/dosyago/p2%2e

🆕 The Multi-Tool Web Vulnerability Scanner.

snopf USB password token

Hashcat web interface

Collection of the most common vulnerabilities found in iOS applications

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

a javascript static security analysis tool

Open source incident management and response platform.

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

outis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).

Open Source Tripwire®

Kali Linux 工具合集中文说明书

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

mXtract - Memory Extractor & Analyzer

安全总是无处不在...

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

Kubernetes Common Configuration Scoring System

Drone pentesting framework console

Documentation:

Automated Mass Exploiter

End-To-End File & Message Encryption For Discord

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

A command line security audit tool for Amazon Web Services

Work in progress firewall for Linux syscalls, written in Rust

Dradis Framework: Colllaboration and reporting for IT Security teams

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Extract and aggregate threat intelligence.

🚀 Fast Port Scanner 🚀

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Ansible CentOS 7 - CIS Benchmark Hardening Script

Web Application recon automation

The clever vulnerability dependency finder

Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

Send encrypted PGP messages with one click

Qualys sslabs-scan utility in a tiny docker image

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

被动式漏洞扫描系统

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

An Active Defense and EDR software to empower Blue Teams

The full story of the CLR implementation of Meterpreter

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.