483 Open source projects that are alternatives of or similar to Serverscan

Steeltoe samples and reference application collection

WebMap-Nmap Web Dashboard and Reporting

Service registry bridge for Docker with pluggable adapters

Automatic Enumeration Tool based in Open Source tools

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Spring Cloud Zookeeper

🔎 shodansploit > v1.3.0

kube-scan: Octarine k8s cluster risk assessment tool

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

DoraRPC is an RPC For the PHP MicroService by The Swoole

Network Pivoting Toolkit

A Nmap XSL implementation with Bootstrap.

an easy-to-use dynamic service discovery, configuration and service management platform for building cloud native applications.

Fast directory scanning and scraping tool

OneForAll是一款功能强大的子域收集工具

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

CyberScan: Network's Forensics ToolKit

📡 Ansible role for Hashicorp Consul clusters

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Extract subdomains from SSL certificates in HTTPS sites.

Old repo for Linkerd 1.x. See the linkerd2 repo for Linkerd 2.x.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Marathon-lb is a service discovery & load balancing tool for DC/OS

🐙 Yet another load balancer

Automate Pentest Tool

mDNS / DNS-SD Service Discovery in pure Go (also known as Bonjour)

💡 A hinting engine for the web

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.

A friendly car security exploration tool for the CAN bus

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Bandit is a tool designed to find common security issues in Python code.

Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.

Juno 译名朱诺。这个名字来源于古罗马神话中的众神之母。它是斗鱼的微服务管理系统， 如同众神之母一样守护着所有微服务的系统。

🐝 BeeHive is a solution for iOS Application module programs, it absorbed the Spring Framework API service concept to avoid coupling between modules.

A REST API security testing framework.

Easy automated vulnerability scanning, reporting and analysis

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

C2/post-exploitation framework

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Best microservices framework in Go, like alibaba Dubbo, but with more features, Scale easily. Try it. Test it. If you feel it's better, use it! 𝐉𝐚𝐯𝐚有𝐝𝐮𝐛𝐛𝐨, 𝐆𝐨𝐥𝐚𝐧𝐠有𝐫𝐩𝐜𝐱!

Abusing Impersonation Privileges on Windows 10 and Server 2019

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

“If you are working in an organization that places lots of restrictions on how developers can do their work, then microservices may not be for you.” ― Sam Newman

Awesome cloud enumerator

Subdomain enumeration through various techniques

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

Samples of simple service discovery patterns with ASP .NET Core

A tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed directly into an existing installation. Provides access to a web based interface using WiFi in AP or Client mode. Will work with nearly all devices that contain a standard 5V Wiegand interface. Primary target group is 26-37bit HID Cards. Similar to the Tastic RFID Thief, Blekey, and ESPKey.

hydra

Idiomatic nmap library for go developers

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Overlord - Red Teaming Infrastructure Automation

Kubernetes RBAC static Analysis & visualisation tool

Steeltoe .NET Core Components: CircuitBreaker, Configuration, Connectors, Discovery, Logging, Management, and Security