760 Open source projects that are alternatives of or similar to Ripv6

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

Penetration tests guide based on OWASP including test cases, resources and examples.

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

An Python Script For Generating Payloads that Bypasses All Antivirus so far .

🆕 The Multi-Tool Web Vulnerability Scanner.

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Discover Your Attack Surface!

Advanced vulnerability scanning with Nmap NSE

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

IPv6 attack toolkit

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Automated Penetration Testing Framework

IPv4 and IPv6 address rate limiting evasion tool

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Advanced reconnaissance utility

A curated list of awesome OSCP resources

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Open-Source Security Architecture | 开源安全架构

Docker containers vulnerability scan

A High Performance HTTP Server for Ruby

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Collection of tips, tools and tutorials around infosec

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

Directory Services Internals (DSInternals) PowerShell Module and Framework

Gorsair hacks its way into remote docker containers that expose their APIs

Enterprise Network Flow Collector (IPFIX, sFlow, Netflow) from Verizon Media

Web path scanner

Find secrets and passwords in container images and file systems

A cross-platform note-taking & target-tracking app for penetration testers.

A network address manipulation library for Python

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Ruby on Rails Phishing Framework

OWASP Joomla Vulnerability Scanner Project

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

A default credential scanner.

A Python-powered exploitation framework and botnet.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Hacking Toolkit

USB Rubber Ducky type scripts written for the DigiSpark.

Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.

SSH/HTTP(S) multiplexer. Run a webserver and a sshd on the same port w/o changes.

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

DotDotPwn - The Directory Traversal Fuzzer

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.