576 Open source projects that are alternatives of or similar to Patton

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

An OSINT Metadata analyzing tool that filters through tags and creates reports

Trigram database written in C++, suited for malware indexing

The Swiss Army knife for automated Web Application Testing

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

Post importer from Ghost backup files.

Doctests from YARD examples

It's a simple tool for test vulnerability shellshock

Friends don't let friends leak secrets on their terminal window 🙈

A web automation engine for Gwen.

Command-line passphrase generator

Explore Indicators of Compromise Automatically

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

Scripts to gather system configuration information for offline/remote auditing

Diagnose problems within WordPress by running a series of checks for symptoms

Passive Security Scanner (被动式安全扫描器)

USB testing made easy

IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.

PoC tool to demonstrate vulnerabilities in wireless input devices

Advanced Netstat Using Python For Windows

Kali Linux 工具合集中文说明书

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Documentation:

🍿 The perfect Checklist Website for meticulous developers.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

A repository of sysmon configuration modules

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Lets you split your ssh_config into separate files

IBM Fully Homomorphic Encryption Toolkit For Linux. This toolkit is a Linux based Docker container that demonstrates computing on encrypted data without decrypting it! The toolkit ships with two demos including a fully encrypted Machine Learning inference with a Neural Network and a Privacy-Preserving key-value search.

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

Sprockets support for Middleman

Forseti Security

The PHP Security Checker

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

📷 ViewFinder - NodeJS product to make the browser into a web app. WTF RBI. CBII. Remote browser isolation, embeddable browserview, secure chrome saas. Licenses, managed, self-hosted. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but open source with free live demos available now! Also, integrated RBI/CDR with CDR from https://github.com/dosyago/p2%2e

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Qualys sslabs-scan utility in a tiny docker image

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

All-in-one tool for managing vulnerability reports from AppSec pipelines

Micro-framework for rapid development of reusable security tools

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

Linux命令转发记录

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

🌴Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file

Tools to automate and/or expedite response.

Tool to predict attacker groups from the techniques and software used

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Example of Gradle Running Cucumber Features in Parallel

Open Repository for the Open Security and Privacy Reference Architecture

A PHPUnit plugin for Psalm

Application and Service Fingerprinting

A social experiment

Secure, human-friendly, cross-platform secrets and config.

A set of recipes useful in pentesting and red teaming scenarios

Software tools for Nordic Semiconductor nRF24-based devices like wireless keyboards, mice, and presenters