1316 Open source projects that are alternatives of or similar to Netpwn

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Cameradar hacks its way into RTSP videosurveillance cameras

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Extract subdomains from SSL certificates in HTTPS sites.

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Most usable tools for iOS penetration testing

A library for fast IP address lookup in Python.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

无状态子域名爆破工具

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

A Router WiFi key recovery/cracking tool with a twist.

The Swiss Army knife for automated Web Application Testing

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Fast Java library for working with IP addresses, ranges, and subnets

Internet standards compliance test suite

An OSINT Metadata analyzing tool that filters through tags and creates reports

A library to work with CIDRs in rust

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

Enterprise Network Flow Collector (IPFIX, sFlow, Netflow) from Verizon Media

A default credential scanner.

Automatically updates IP blacklist for EdgeOS (supports IPv4 & IPv6)

A simple, lightweight socks5 server for Unix (Linux/BSD/macOS)

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Collection of PowerShell network security scripts for system administrators.

Asynchronous Python implementation of SlowLoris DoS attack

A tool to ping multiple hosts at once with a CLI and web-based overview

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

A curated list of awesome social engineering resources.

Easily forge ICMP packets and make your own ping and traceroute.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Don't let your user be a victim of their own action

aliyun ddns for golang【阿里云DDNS服务，用来将自己的动态IP同步到自己的域名解析服务器，安装方便，配置简单，默认支持Linux和MacOS以后台服务方式持续运行】

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Automated NoSQL database enumeration and web application exploitation tool.

All-in-one tool for managing vulnerability reports from AppSec pipelines

A simple, handy network addressing multitool with plenty of features

A role to manage iptables rules which doesn't suck.

A library to check for compromised passwords

Networking , N/W layer, Transport and Application Layer, Networking Service, Internet, Troubleshooting , N/W future

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

Webshell Manager

Verified iptables Firewall Ruleset Analysis

Network utility for sending / receiving TCP, UDP, SSL

OSSSM (awesome). Open source short-term secure messaging

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Common password pattern generator using strings list

protocol fuzzing toolkit

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration