413 Open source projects that are alternatives of or similar to Phish Collect

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

InfoPath Phishing Repo Resource

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Dashboard to collect, analyze, and respond to reported phishing emails.

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Monitor Certificate Transparency Logs For Phishing Domains

Domain name permutation engine for detecting typo squatting, phishing and corporate espionage

Machine learning to classify Malicious (Spam)/Benign URL's

🔥 A powerful MongoDB auditing and pentesting tool 🔥

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

All-in-one tool for managing vulnerability reports from AppSec pipelines

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

An automated phishing tool with 30+ templates.

Wifiphisher is a rogue Access Point framework for conducting red team engagements or Wi-Fi security testing. Using Wifiphisher, penetration testers can easily achieve a man-in-the-middle position against wireless clients by performing targeted Wi-Fi association attacks. Wifiphisher can be further used to mount victim-customized web phishing attacks against the connected clients in order to capture credentials (e.g. from third party login pages or WPA/WPA2 Pre-Shared Keys) or infect the victim stations with malwares.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

light weight phishing framework with 18+ pages.

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

The Swiss Army knife for automated Web Application Testing

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

pentest framework

This challenge is Inon Shkedy's 31 days API Security Tips.

Phishing catcher using Certstream

DeepSea Phishing Gear

Subdomain Takeover tool written in Go

A proposed standard that allows websites to define security policies.

Badges for your GitHub tool presented at InfoSec Conference

Secret and/ credential patterns used for gf.

Bringing you the best of the worst files on the Internet.

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Tool designed for performing various social engineering attacks, for phishing.

This repo is meant to be a list of companies that hire security people full remote.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Common password pattern generator using strings list

An OSINT Metadata analyzing tool that filters through tags and creates reports

Scan for open AWS S3 buckets and dump the contents

A curated list of awesome social engineering resources.

A toolkit for Security Researchers

RFD Checker - security CLI tool to test Reflected File Download issues

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

A flexible control server for osquery fleets

Exploitation Framework for Embedded Devices

Your Everyday Threat Intelligence

Awesome Node.js Security resources

protocol fuzzing toolkit

Phishing Tool for 18 social media: Instagram, Facebook, Snapchat, Github, Twitter, Yahoo, Protonmail, Spotify, Netflix, Linkedin, Wordpress, Origin, Steam, Microsoft, InstaFollowers, Gitlab, Pinterest

Webshell Manager

GitBook: OSCP RoadMap

A collection of response templates for invalid bug bounty reports.

List of Awesome Asset Discovery Resources

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Phishing Campaign Toolkit

🐛 Malware Sinkhole List in various formats

Malcom - Malware Communications Analyzer