883 Open source projects that are alternatives of or similar to Pcwt

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Find exploits in local and online databases instantly

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A wrapper for Nmap to quickly run network scans

RFD Checker - security CLI tool to test Reflected File Download issues

Pentest/BugBounty progress control with scanning modules

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

This challenge is Inon Shkedy's 31 days API Security Tips.

Framework for rapid development and reusable of security tools

Misc. Public Reports of Penetration Testing and Security Audits.

Yet Another PHP Shell - The most complete PHP reverse shell

Pentest/BugBounty progress control with scanning modules

A Tool for Domain Flyovers

Pentest: Subdomains enumeration tool for penetration testers.

Tool for catching and logging different types of requests.

Selenium powered Python script to automate searching for vulnerable web apps.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Penetration tests guide based on OWASP including test cases, resources and examples.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Turn your VPS into an attack box

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A fast DOM based XSS vulnerability scanner with simplicity.

OSINT

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

An automated approach to performing recon for bug bounty hunting and penetration testing.

Automated Red Team Infrastructure deployement using Docker

Open source all-in-one CLI tool to semi-automate pentesting.

Related subdomains finder

Docker images for infosec tools

parse nmap files

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Powerfull XSS Scanning and Parameter analysis tool&gem

MCW Securing PaaS

🎶 Markup language for music creation and analysis! -- https://hlorenzi.github.io/musicode/

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

fast TCP banner grabbing with node.js

Browser's XSS Filter Bypass Cheat Sheet

[PHP] JodelBlue is a Web-App and Browser-Client for the Jodel App. No registration required! Browse Jodels all over the world.

🎹 MIDI music mayhem - flip, transpose, and arbitrarily remap pitches in MIDI files

Chef repository for pentesting tools

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Security Tool to Look For Interesting Files in S3 Buckets

websocket-connection-smuggler

[Alpha release of v3] Development platform for humans / Plataforma de desenvolvimento para humanos

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Notes about attacking Jenkins servers

Creating a web client for the tp-link series of smart switches (HS-100, HS-110, etc).

CVE-2016-8610 (SSL Death Alert) PoC

User management system for the server (Home Cloud).

A file system blob store that is designed to prevent conflicts when used with a distributed file system or storage area network

a recon tool that allows searching on URLs that are exposed via shortener services

A fast, simple Node.js/Express + MongoDB + Vue.js web app boilerplate project

self-hosted Lightweight News Reader

A simple web application for browsing similar images

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.