550 Open source projects that are alternatives of or similar to reconness-agents

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

Demo scripts for Kubernetes built-in controllers

The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.

Hacking, pen-testing, and cyber-security related tools built with Python.

Framework for rapid development and reusable of security tools

Astra is a tool to find URLs and secrets inside a webpage/files

XSS Payload without Anything.

A collection of resources I'm using while working toward the OSCP

RECON learn: a free, open platform for training material on epidemics analysis

Host Header Injection Checker

This document proposes a way of standardising the structure, language, and grammar used in security policies.

The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.

This is a complete project series on implementing hacking tools available in Kali Linux into python.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Para pencari bug / celah kemanan bisa bergabung.

Signatures for jaeles scanner by @j3ssie

Small, useful platform-agnostic scripts (mostly just for Linux) that don't justify having their own repo

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

Personal and professional dotfiles to setup my personal workspace on any Debian/Ubuntu system. Also available as rwxrob/workspace container.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Asynchronous client for Java-based agents

HTTP fuzzer engine security oriented

Python Powered Repository

Information about XboxDev and issue tracker for the entire XboxDev ecosystem

commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. Please use it instead: https://github.com/assetnote/wordlists

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

Collection grep patterns for Tom Hudson a.k.a Tomnomnom tools namely gf

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

Scan secrets from Continuous Integration Build Logs

A Cisco Cheatsheet: Commands and Snippets for bootstrapping, boilerplate, configuration, and hardening of Cisco routers and switches.

Community repository, to improve security and performance of Windows 10 and windows 11 with tweaks, commands, scripts, registry keys, configuration, tutorials and more

Burp extension to decode NTLM SSP headers and extract domain/host information

💪 Collection of tips, tricks and scripts for becoming a true poweruser

一些脚本和工具

Scripts to help you to play with Docker Swarm and Docker Machine

Little Bug Bounty & Hacking Tools⚔️

Tool to automate recon

Pentesting/Bugbounty Dockerfiles.

A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title

Maniaplanet scripts and resources

another scripts repo

Kubernetes Scanner

Swiftly search FDNS datasets from Rapid7 Open Data

Elixir wrapper for Recon, tools to diagnose Erlang VM safely in production

Running nuclei Continuously

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Steam userscripts

SixArm.com » Unix » shell scripts for command line programs in sh, bash, etc.

A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).

Pentest/BugBounty progress control with scanning modules

Messy BurpSuite plugin for SQL Truncation vulnerabilities.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Find host header injections and perform Host Header attacks with other kind of bugs like web cache poissoning

Http request smuggling vulnerability scanner

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

Intentionally vulnerable Android application.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations