1044 Open source projects that are alternatives of or similar to Perun

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Awesome cloud enumerator

👻Impost3r -- A linux password thief

Automation for internal Windows Penetrationtest / AD-Security

Web path scanner

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

备考 OSCP 的各种干货资料/渗透测试干货资料

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Venom - A Multi-hop Proxy for Penetration Testers

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

🚀 Fast Port Scanner 🚀

A high performance offensive security tool for reconnaissance and vulnerability scanning

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Hacking Toolkit

A REST API security testing framework.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

This repository contains full code examples from the book Gray Hat C#

被动式漏洞扫描系统

OSINT

Overlord - Red Teaming Infrastructure Automation

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Next generation web scanner

swiss army knife for hackers

Web-based Source Code Vulnerability Scanner

Tactics, Techniques, and Procedures

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

Exploit Pack -The next generation exploit framework

A tool to automate penetration tests

Extract subdomains from SSL certificates in HTTPS sites.

Network Pivoting Toolkit

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Remote command execution vulnerability scanner for Log4j.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Sifter aims to be a fully loaded Op Centre for Pentesters

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

fireELF - Fileless Linux Malware Framework

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Open source pre-operation C2 server based on python and powershell

Python3 tool to perform password spraying using RDP

hacker, ready for more of our story ! 🚀

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

红队综合渗透框架

mXtract - Memory Extractor & Analyzer

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

All releases of the security research group (a.k.a. hackers) The Hacker's Choice