1137 Open source projects that are alternatives of or similar to rejig

Awesome cloud enumerator

A Tool for Domain Flyovers

This challenge is Inon Shkedy's 31 days API Security Tips.

🐱给小白的Shadowsocks和V2ray翻墙教程

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Pentest: Subdomains enumeration tool for penetration testers.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

Automated Red Team Infrastructure deployement using Docker

RFD Checker - security CLI tool to test Reflected File Download issues

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Misc. Public Reports of Penetration Testing and Security Audits.

Related subdomains finder

A collection of response templates for invalid bug bounty reports.

Vulnerability Dashboard

The Swiss Army knife for automated Web Application Testing

Awesome Node.js Security resources

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Scan for open AWS S3 buckets and dump the contents

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Multi source CVE/exploit parser.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Secret and/ credential patterns used for gf.

Decode All Bases - Base Scheme Decoder

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Ⓜ️ Docker Machine driver for Vultr Cloud

Subdomain Takeover tool written in Go

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

🚀 A DigitalOcean Reseller written with Ruby On Rails

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

A handy bash script to setup crypto masternodes in no time. Initially developed for $PIVX. Now many more ;-)

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Offensive tools as Dockerfiles. Lightweight & Ready to go

Webshell Manager

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

🔐 Docker Container for Penetration Testing & Security

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

A Colab For Bug Hunting!

自建梯子教程, 翻墙教程, 科学上网, google https://github.com/firewallTutor/firewallTutor

列舉出靠譜、實惠、優秀的VPS供應商，歡迎留言完善　

Autoscaling for Clouds

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

A laravel 5 package to easily create and maintain vps on digital ocean

An OSINT tool to find contacts in order to report security vulnerabilities.

minectl 🗺 is a cli for creating Minecraft server on different cloud provider.

WARP one-click script. Add an IPv4, IPv6 or dual-stack CloudFlare WARP network interface and Socks5 proxy for VPS. 一键脚本

Manipulate DNS records on various DNS providers in a standardized way.

🖖 Fast, modern, easy-to-use network scanner

A collection of some of my scripts

Script to convert a Debian installation on DigitalOcean to Arch Linux

Manage your application processes in production hassle-free like Heroku CLI with Procfile and Systemd

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Multi Tool Subdomain Enumeration

A collection of various GitHub gists for hackers, pentesters and security researchers

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.