442 Open source projects that are alternatives of or similar to pentesting-multitool

Powerful Shodan API client using RxJava and Retrofit

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

🔎 shodansploit > v1.3.0

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Web Scan Lazy Tools - Python Package

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

🐞 Primitive Erlang Security Tool

A simple tool to detect outdated shared libraries

Simple Golang HTTPS/TLS Examples

⚡️ Docker official image for Wallarm Node. API security platform agent.

YAWAST ...where a pentest starts. Security Toolkit for Web-based Applications

Open-Source Security Architecture | 开源安全架构

Shodan API client

Advanced vulnerability scanning with Nmap NSE

InQL - A Burp Extension for GraphQL Security Testing

Security tool to trace URL's jumps across the rel links to obtain the last URL

A humble, and fast, security-oriented HTTP headers analyzer

IotShark - Monitoring and Analyzing IoT Traffic

network reconnaissance toolkit

Web application vulnerability scanner

Semi-automatic OSINT framework and package manager

Hacking Toolkit

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

kube-scan: Octarine k8s cluster risk assessment tool

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

🔎 Python framework to automatically discover and enumerate hosts from different back-end systems (Shodan, Censys)

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Source Code Security Audit (源代码安全审计)

A web spider for shodan.io without using the Developer API.

Making CoreOS' Clair easily work in CI/CD pipelines

Lookup file hashes, domain names and IP addresses using various vendors to assist with triaging potential threats.

A distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot.

Packet communication investigator

Find secrets on any machine from over 120 Different Signatures.

VOIP Security Audit Framework

Scan for and exploit Consul agents

A Linux Host-based Intrusion Detection System based on eBPF.

Github mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)

Check CPAN modules for known security vulnerabilities

Misc. Public Reports of Penetration Testing and Security Audits.

A free, open-source and modern Chess Variant Analysis GUI for the 21st century

SEC分布式资产扫描系统

Network Security Vulnerability Scanner

RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!

A curated list of security resources for a Ruby on Rails application

A community collection of security reviews of open source software components.

🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.

Access your computer from anywhere. DnsTube is a Windows .NET dynamic DNS client for Cloudflare.

a radare2 plugin that decodes packets with Scapy

Hacking, pen-testing, and cyber-security related tools built with Python.

Improve your code security by running different security checks/validation in a simple way.

ⓦ A clean and free WordPress theme designed to serve as a visual diary

A network scanner tool, developed in Python 3 using scapy.

📡 A security research tool with shodan integration

The Ultimate Network Security Guide 🔒 Protection | 🔎 Privacy | 🚀 Performance on home network 24/7 🕛 Accessible anywhere 🌏

🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找