578 Open source projects that are alternatives of or similar to Nebulousad

Exploit Pack -The next generation exploit framework

Cybersecurity Evaluation Tool

Awesome Golang Security resources 🕶🔐

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

Zeek network security monitor plugin that enables parsing of the Ethernet/IP and Common Industrial Protocol standards

Search for Directory Traversal Vulnerabilities

A note-taking macOS app for penetration-testers.

Bandit is a tool designed to find common security issues in Python code.

Detect threats with log data and improve cloud security posture

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

Adversary Simulation Framework

A binary analysis framework

Tools to automate and/or expedite response.

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Golang安全资源合集

Next generation web scanner

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Fully automated offensive security framework for reconnaissance and vulnerability scanning

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Help building an adaptive and fine-grained pod security policy

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Daemon to ban hosts that cause multiple authentication errors

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

An automated target reconnaissance pipeline.

A default credential scanner.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

ATT&CK实操

Command line password manager for Unix-like operating systems

A set of recipes useful in pentesting and red teaming scenarios

JAVA安全SDK及编码规范

Collection of PowerShell network security scripts for system administrators.

Web Content Discovery Tool

Automated cacert.pem management for PHP projects

A security monitoring solution for Kubernetes

OSS Vulnerability Scanner for Windows Platform

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

Audit Windows Security with best Practice

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.

Check read, write permissions on S3 buckets in your account

一行代码检测XP/调试/多开/模拟器/root

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

Find secrets and passwords in container images and file systems

The Staff-Manager App Server for Enterprise Token Safe BOX

Cloud Security Posture Management (CSPM)

A set of functions implemented using lambda-cfn to monitor an organization's AWS infrastructure for best practices, security and compliance.

Hyuga 一个用来记录DNS查询和HTTP请求的监控工具。

KInspector is an application for analyzing health, performance and security of your Kentico solution.

@viva_las_venus -- This project is to learn, teach and awareness about privacy and security in the digital life, to build a better, more open and more inclusive world together!

Android Mobile Device Hardening

A repository of sysmon configuration modules

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Program to reverse Docker images into Dockerfiles

🐞 Primitive Erlang Security Tool

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

DNS-Discovery is a multithreaded subdomain bruteforcer.