608 Open source projects that are alternatives of or similar to Nmap Nse Info

Abusing Impersonation Privileges on Windows 10 and Server 2019

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

WebMap-Nmap Web Dashboard and Reporting

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

An nmap wrapper library for .NET

Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

Offensive Security recon tool

swiss army knife for hackers

My OSCP journey

Just another script for automatize boolean-based blind SQL injections. (Demo)

parse nmap files

REST API backend for Reconmap

Detect alive host and open port .

Mass scan IPs for vulnerable services

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Multi source CVE/exploit parser.

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

Quick SQL Scanner, Dorker, Webshell injector PHP

An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

🔨 A modern multiple reverse shell sessions manager wrote in go

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

generates weak passwords based on current date

fast TCP banner grabbing with node.js

Import Nmap scans to Cherrytree

My simple Swiss Army knife for http/https troubleshooting and profiling.

整理一些内网常用渗透小工具

Automate Pentest Tool

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Handbook of information collection for penetration testing and src

Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Share of my Huge Collection of Cheatsheet (Coding, Cheat, Pinouts, Command Lists, Etc.)

Semi-automatic OSINT framework and package manager

Wiki to collect Red Team infrastructure hardening resources

👻 A LAN dropbox chatbot controllable via Telegram

Extracting URLs of a specific target based on the results of "commoncrawl.org"

Advanced Web Shell

OneForAll是一款功能强大的子域收集工具

Automated All-in-One OS Command Injection Exploitation Tool.

Quick utility to craft executables for pentesting and managing reverse shells

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Dradis Framework: Colllaboration and reporting for IT Security teams

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

Cameradar hacks its way into RTSP videosurveillance cameras

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Penetration testing and auditing toolkit for Android apps.

A curated list of awesome OSCP resources

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

DNS Sub-domain brute forcer, in Python + gevent

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

Fast web fuzzer written in Go

🦄🔒 Awesome list of secrets in environment variables 🖥️

Quick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

Credential stuffing engine built for security professionals