504 Open source projects that are alternatives of or similar to Redsnarf

Collection of pentesting scripts

retrieve information via O365 with a valid cred

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

Awesome Nmap Grep

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

web-based OSINT and reconaissance toolkit

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

An automated e-mail OSINT tool

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Captcha Intruder (CIntrud3r) is an automatic pentesting tool to bypass captchas.

A tool to automate penetration tests

⚡️ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡️

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Phishing Tool & Information Collector

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

Evaluate the security of S3 buckets

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

The all-in-one Red Team extension for Web Pentester 🛠

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Code from Blackhat Python book

A fast DOM based XSS vulnerability scanner with simplicity.

Burp Suite extension to discover assets from HTTP response.

Find web directories without bruteforce

fully automated pentesting tool

Hetty is an HTTP toolkit for security research.

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A unified console to perform the "kill chain" stages of attacks.

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

🔐 Docker Container for Penetration Testing & Security

Semi-automatic OSINT framework and package manager

The cheat sheet about Java Deserialization vulnerabilities

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

A simple tool for interacting with OWASP ZAP from the commandline.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Monitor linux processes without root permissions

THE ESP8266 HONEYPOT

A script written lazily for generating cross-platform backdoors on the go :)

Simple Server Side Request Forgery services enumeration tool.

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

A (partial) Python rewriting of PowerSploit's PowerView

🔥 Firecrack pentest tools: Facebook hacking random attack, deface, admin finder, bing dorking:

OSINT Tool: Generate username lists for companies on LinkedIn

Web hacking framework with tools, exploits by python

A REST API security testing framework.

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Terraform script to deploy AD-based environment on Azure

Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.

Next generation web scanner

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK

⛔️ offsec batteries included

BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources