870 Open source projects that are alternatives of or similar to Satansword

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Open-Source Security Architecture | 开源安全架构

Port of "DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers" to Clang/LLVM 10 and Linux Kernel

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Web Recon & Exploitation Tool.

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Search for Directory Traversal Vulnerabilities

Set of tools to audit SIP based VoIP Systems

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Attack Surface Management Platform | Sn1perSecurity LLC

Fully automated offensive security framework for reconnaissance and vulnerability scanning

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

A REST API security testing framework.

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types

Safety checks your installed dependencies for known security vulnerabilities

Advanced vulnerability scanning with Nmap NSE

grep rough audit - source code auditing tool

Static and dynamic Android application security analysis

A tool for identifying misconfigured CloudFront domains

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

Toolbox containing research notes & PoC code for weaponizing .NET's DLR

Public append-only ledger microservice built with Slim Framework

Store data in a simple and secure way

Python 3.5+ DNS asynchronous brute force utility

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Blueborne CVE-2017-0785 Android information leak vulnerability

Python3 tool to perform password spraying using RDP

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

A light-weight password manager with a focus on simplicity and security

poc or exp of android vulnerability

Attack surface mapping

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Analyses your Java and Python applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

DeimosC2 is a Golang command and control framework for post-exploitation.

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

Open Redirect Payloads

A curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).

Identify vulnerabilities in running containers, images, hosts and repositories

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

Pattern recognition for hosts, services, and content

WEB SERVICE SECURITY ASSESSMENT TOOL

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Automated Mass Exploiter

Security scanner coordinator

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Web application vulnerability scanner

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Awesome Ruby Security resources

🔨 Manage your website via terminal

Apache Block Bad Bots, (Referer) Spam Referrer Blocker, Vulnerability Scanners, Malware, Adware, Ransomware, Malicious Sites, Wordpress Theme Detectors and Fail2Ban Jail for Repeat Offenders

Convolutional neural network for analyzing pentest screenshots

CVE-2020-0796 Remote Code Execution POC