631 Open source projects that are alternatives of or similar to Nndefaccts

network reconnaissance toolkit

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Advanced vulnerability scanning with Nmap NSE

A simple tool for interacting with OWASP ZAP from the commandline.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Hacking Toolkit

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

VOIP Security Audit Framework

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Pentest Report Generator

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Gorsair hacks its way into remote docker containers that expose their APIs

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Idiomatic nmap library for go developers

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A repository of tools for pentesting of restricted and isolated environments.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Dradis Framework: Colllaboration and reporting for IT Security teams

Automated NoSQL database enumeration and web application exploitation tool.

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

Directory Services Internals (DSInternals) PowerShell Module and Framework

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

A wrapper for Nmap to quickly run network scans

Web Application Security Scanner Framework

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

Hack the World using Termux

VOIP Security Audit Framework

Pentesting suite for Maltego based on data in a Metasploit database

Penetration Testing Notes and Playbook (PTP)

Linux Privilege Escalation Tool By WazeHell

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

🎯 Server Side Template Injection Payloads

asset-scan是一款适用甲方企业的外网资产周期性扫描监控系统

备考 OSCP 的各种干货资料/渗透测试干货资料

Audit tool to find common vulnerabilities in PHP source code

Intercepting TCP proxy to modify raw TCP streams using modules on incoming or outgoing traffic

Domain name permutation engine written in Go

HydraFW official firmware for HydraBus/HydraNFC for researcher, hackers, students, embedded software developers or anyone interested in debugging/hacking/developing/penetration testing

Custom memory allocator that helps discover reads from uninitialized memory

A penetration testing tool for finding file upload bugs (NDSS 2020)

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

🕵️‍♀️ MixAudit provides a mix deps.audit task to scan a project Mix dependencies for known Elixir security vulnerabilities

Automated Security Testing For REST API's

🔐 Docker Container for Penetration Testing & Security

Auto IP or Domain Attack Tool ( #1 )

A tool for auditing security properties of GCP projects.

Python script wrote to automate the process of generating various reverse shells.

A Go implementation of dirsearch.

Scan only once by IP address and reduce scan times with Nmap for large amounts of data.

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/