687 Open source projects that are alternatives of or similar to Pypowershellxray

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

Read local Chrome cookies without root or decrypting

Intelligence and Reconnaissance Package/Bundle installer.

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

HostHunter a recon tool for discovering hostnames using OSINT techniques.

NodeJS Simple Network Scanner

Trigram database written in C++, suited for malware indexing

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

The request.bin of DNS request

DeimosC2 is a Golang command and control framework for post-exploitation.

USB testing made easy

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

Ansible role to apply a security baseline. Systemd edition.

OSINT Swiss Army Knife

Application and Service Fingerprinting

Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.

Cloud Discovery provides a point in time enumeration of all the cloud native platform services

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

Mobile Revelator

Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Command-line passphrase generator

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Tools for the Computer Incident Response Team 💻

Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

一键提取安卓应用中可能存在的敏感信息。

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Toolbox containing research notes & PoC code for weaponizing .NET's DLR

IBM Fully Homomorphic Encryption Toolkit For Linux. This toolkit is a Linux based Docker container that demonstrates computing on encrypted data without decrypting it! The toolkit ships with two demos including a fully encrypted Machine Learning inference with a Neural Network and a Privacy-Preserving key-value search.

Parses $MFT from NTFS file systems

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Advanced Netstat Using Python For Windows

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

A binary analysis framework

WEB SERVICE SECURITY ASSESSMENT TOOL

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

Endpoint detection & Malware analysis software

🔨 Manage your website via terminal

❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

incident response tool for iOS devices

Tool for viewing and analyzing execution traces

outis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Maltego CaseFile entities for information security investigations, malware analysis and incident response

A CLI tool for automating the importing, securing and usage of NordVPN (and in the future, more) OpenVPN servers through NetworkManager.

An ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)

An Unsupervised Graph-based Toolbox for Fraud Detection

Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders

Hyuga 一个用来记录DNS查询和HTTP请求的监控工具。

🚿 Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software