399 Open source projects that are alternatives of or similar to Offensivedlr

The dum^H^H^Hsimplest encryption tool in the world.

An Active Defense and EDR software to empower Blue Teams

Next generation web scanner

A static analysis security vulnerability scanner for Ruby on Rails applications

Automated NoSQL database enumeration and web application exploitation tool.

Exploit Pack -The next generation exploit framework

Cameradar hacks its way into RTSP videosurveillance cameras

Daemon to ban hosts that cause multiple authentication errors

🚀 Fast Port Scanner 🚀

Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.

A light-weight password manager with a focus on simplicity and security

Hardening Ubuntu. Systemd edition.

A tool to test security of json web token

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

CMS/LMS/Library etc Versions Fingerprinter

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Awesome PHP Security Resources 🕶🐘🔐

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

A note-taking macOS app for penetration-testers.

A collection of awesome security hardening guides, tools and other resources

zBang is a risk assessment tool that detects potential privileged account threats

emba - An analyzer for Linux-based firmware of embedded devices.

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

My simple Swiss Army knife for http/https troubleshooting and profiling.

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

Curated List of Privacy Respecting Services and Software

kube-scan: Octarine k8s cluster risk assessment tool

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

🔒 Anti DDOS | Bash Script Project 🔒

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

C2/post-exploitation framework

secureCodeBox (SCB) - continuous secure delivery out of the box

SIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems.

Set of tools to audit SIP based VoIP Systems

[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

PoC code from DEF CON 25 presentation

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A binary analysis framework

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

mXtract - Memory Extractor & Analyzer

DNS-Discovery is a multithreaded subdomain bruteforcer.

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

A Virtual environment for Pentesting IoT Devices

Attack surface mapping

An application to assist in the organization and prioritization of software security activities.

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

A Deep Graph-based Toolbox for Fraud Detection

snopf USB password token

Store data in a simple and secure way

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Identify vulnerabilities in running containers, images, hosts and repositories

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

GitGuardian Shield GitHub Action - Find exposed credentials in your commits

Android library to reveal or obfuscate strings and assets at runtime

Passive Security Scanner (被动式安全扫描器)