1042 Open source projects that are alternatives of or similar to Prismatica

fireELF - Fileless Linux Malware Framework

Exploit Pack -The next generation exploit framework

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

🔐 Docker Container for Penetration Testing & Security

Awesome cloud enumerator

🎯 XML External Entity (XXE) Injection Payload List

Forward shell generation framework

Subdomain Takeover tool written in Go

Port scanning and domain utility.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Hetty is an HTTP toolkit for security research.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

WebMap-Nmap Web Dashboard and Reporting

Bringing you the best of the worst files on the Internet.

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Extract subdomains from SSL certificates in HTTPS sites.

Automatic SQL injection and database takeover tool

Idiomatic nmap library for go developers

Extract endpoints from APK files

Attack Surface Management Platform | Sn1perSecurity LLC

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

mXtract - Memory Extractor & Analyzer

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

This repo will contain some basic pentest/RT commands.

Selenium powered Python script to automate searching for vulnerable web apps.

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

An advanced tool for email reconnaissance

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Sifter aims to be a fully loaded Op Centre for Pentesters

A fully automatic wifi deauther coded in Python

Dradis Framework: Colllaboration and reporting for IT Security teams

Fast web fuzzer written in Go

Notes for taking the OSCP in 2097. Read in book form on GitBook

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A collection of awesome security hardening guides, tools and other resources

Web path scanner

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Intelligence tool but without API key

被动式漏洞扫描系统

A list to discover work of red team tooling and methodology for penetration testing and security assessment

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Vulnerability Dashboard

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

🦄🔒 Awesome list of secrets in environment variables 🖥️

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.