504 Open source projects that are alternatives of or similar to Redsnarf

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A simple keylogger for Windows, Linux and Mac

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Simple multi threaded tool to extract domain related data from commoncrawl.org

Hacking Toolkit

My OSCP journey

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

A Laravel 5.1 package that first tries to log the user against the internal database if that fails, it tries against the configured LDAP/AD server.

Modern tactical exploitation toolkit.

LDAP auth plugin for verdaccio

🔨 A modern multiple reverse shell sessions manager wrote in go

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Find web directories without bruteforce

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Semi-automatic OSINT framework and package manager

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Simple Server Side Request Forgery services enumeration tool.

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

👻Stowaway -- Multi-hop Proxy Tool for pentesters

无状态子域名爆破工具

Notes for taking the OSCP in 2097. Read in book form on GitBook

Interactive Network Scanner

Provision a brand-new company with proper defaults in Windows, Offic365, and Azure

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Directory Services Internals (DSInternals) PowerShell Module and Framework

All MITM attacks in one place.

A repo with information about security of Ethereum Smart Contracts

Attack Surface Management Platform | Sn1perSecurity LLC

PingCastle - Get Active Directory Security at 80% in 20% of the time

Useful tools and scripts during Penetration Testing engagements

Privilege Escalation Enumeration Script for Windows

Bloodhound for Blue and Purple Teams

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

The DNN Azure Active Directory Provider is an Authentication provider for DNN Platform (formerly DotNetNuke) that uses Azure Active Directory OAuth2 authentication to authenticate users.

Handbook of information collection for penetration testing and src

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Fast web fuzzer written in Go

Micro-framework for rapid development of reusable security tools

fireELF - Fileless Linux Malware Framework

被动式漏洞扫描系统

HostHunter a recon tool for discovering hostnames using OSINT techniques.

online port scan scraper

A framework for Backdoor development!

Exploit Pack -The next generation exploit framework

Empire HTTP(S) C2 redirector setup script

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

Reverse proxies cheatsheet

The Shadow Attack Framework

Web Content Discovery Tool

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK

⛔️ offsec batteries included