399 Open source projects that are alternatives of or similar to Offensivedlr

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

This repository created for personal use and added tools from my latest blog post.

🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Trojan 🐍 (keylogger, take screenshots, open your webcam) 🔓

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Help building an adaptive and fine-grained pod security policy

Awesome Ruby Security resources

IAST 灰盒扫描工具

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Credentials catching honeypot

The Staff-Manager App Server for Enterprise Token Safe BOX

syzkaller is an unsupervised coverage-guided kernel fuzzer

A REST API security testing framework.

Web application vulnerability scanner

A tool for identifying misconfigured CloudFront domains

Awesome .NET Security Resources

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

YARA malware query accelerator (web frontend)

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

Kubernetes RBAC static Analysis & visualisation tool

A Python Tool For google Hacking

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

A repository for maintaining lists of things like malicious URLs, fake token addresses, and so forth. We love lists.

Bandit is a tool designed to find common security issues in Python code.

Dashboard to collect, analyze, and respond to reported phishing emails.

Secure, Unified, Powerful and Extensible Rust Android Analyzer

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

WEB SERVICE SECURITY ASSESSMENT TOOL

Web Scan Lazy Tools - Python Package

🔎 shodansploit > v1.3.0

Next generation web scanner

A light-weight password manager with a focus on simplicity and security

Fully automated offensive security framework for reconnaissance and vulnerability scanning

My simple Swiss Army knife for http/https troubleshooting and profiling.

secureCodeBox (SCB) - continuous secure delivery out of the box

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

A Deep Graph-based Toolbox for Fraud Detection

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

An automated target reconnaissance pipeline.

Python 3.5+ DNS asynchronous brute force utility

NERVE Continuous Vulnerability Scanner

Modlishka. Reverse Proxy.

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

🔨 Manage your website via terminal

Automated cacert.pem management for PHP projects

Web-based Source Code Vulnerability Scanner

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

Plugin to block compilation when unapproved dependencies are used or code styling does not comply.

Collaborative malware analysis framework

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

👻Impost3r -- A linux password thief

Search for Directory Traversal Vulnerabilities

Store data in a simple and secure way

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Identify vulnerabilities in running containers, images, hosts and repositories

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)