1803 Open source projects that are alternatives of or similar to Quiver

Idiomatic nmap library for go developers

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

A tool to fastly get all javascript sources/files

Automated NoSQL database enumeration and web application exploitation tool.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Awesome cloud enumerator

Rockyou for web fuzzing

Useful tools and scripts during Penetration Testing engagements

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A collection of hacking / penetration testing resources to make you better!

Collection of tips, tools and tutorials around infosec

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Penetration test Achieve Knowledge Unite Rapid Interface

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

A wrapper for Nmap to quickly run network scans

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

jSQL Injection is a Java application for automatic SQL database injection.

An oh-my-zsh plugin for GPG encrypted internet synchronised Zsh history, with Git.

An HTTP/HTTPS intercept proxy written in Go.

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

Automatically brute force all services running on a target.

Discover hidden deepweb pages

Don't let buffer overflows overflow your mind

A simple keylogger for Windows, Linux and Mac

Kubernetes Aliases and Bash Functions

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

Scripts I use during pentest engagements.

Dump exposed HTTP .git fast

websocket-connection-smuggler

Security Tool to Look For Interesting Files in S3 Buckets

🔖 Modern Javascript keylogger with web panel

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

The Swiss Army knife for automated Web Application Testing

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Micro-framework for rapid development of reusable security tools

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

⛔️ offsec batteries included

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Fast browser-based network discovery module

A list to discover work of red team tooling and methodology for penetration testing and security assessment

The ultimate WinRM shell for hacking/pentesting

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.