937 Open source projects that are alternatives of or similar to Opensquat

🎖safely* install packages with npm or yarn by auditing them as part of your install process

USB testing made easy

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Open Source Tripwire®

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

Let's track phishing kits to give to research community raw material to study !

OSINT Tool: Generate username lists for companies on LinkedIn

Application and Service Fingerprinting

mXtract - Memory Extractor & Analyzer

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Documentation:

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Tool for viewing and analyzing execution traces

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.

A collection of public offensive and defensive security related scripts for InfoSec students.

Your Everyday Threat Intelligence

The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).

Command-line passphrase generator

OSINT tool to find breached emails, databases, pastes, and relevant information

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

Attack surface mapping

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Attack Surface Management Platform | Sn1perSecurity LLC

A note-taking macOS app for penetration-testers.

A curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Phishing Tool for 18 social media: Instagram, Facebook, Snapchat, Github, Twitter, Yahoo, Protonmail, Spotify, Netflix, Linkedin, Wordpress, Origin, Steam, Microsoft, InstaFollowers, Gitlab, Pinterest

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

Paskto - Passive Web Scanner

light weight phishing framework with 18+ pages.

Tool to predict attacker groups from the techniques and software used

Imports Alienvault OTX pulses to a MISP instance

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

protocol fuzzing toolkit

Public append-only ledger microservice built with Slim Framework

Smart OSINT collection of common IOC types

Search people on the Internet.

OSS Vulnerability Scanner for Windows Platform

Exploit management framework

Resources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.

Keep track of all current ethereum scams in a large database

OSSSM (awesome). Open source short-term secure messaging

Advanced Netstat Using Python For Windows

Analyses your Java and Python applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

my oscp prep collection

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Convolutional neural network for analyzing pentest screenshots

A collection of Ansible Playbooks that configure Kali to use Fish & install a number of tools

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Scripts to gather system configuration information for offline/remote auditing

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

find out when and where someone is posting to reddit

List of Awesome Asset Discovery Resources

Python3 library and command line for GreyNoise

Incredibly fast crawler designed for OSINT.

Discover Your Attack Surface!