738 Open source projects that are alternatives of or similar to sgCheckup

A schema and set of tools for using SQL to query cloud infrastructure.

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Automatic Enumeration Tool based in Open Source tools

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.

an asynchronous target enumeration tool

Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

The Swiss Army knife for automated Web Application Testing

Detect alive host and open port .

WEB PENETRATION TESTING TOOL 💥

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Advanced Reconnaissance tool to enumerate attacking surface of the target.

Open source all-in-one CLI tool to semi-automate pentesting.

Exploitation Framework for Embedded Devices

Gorsair hacks its way into remote docker containers that expose their APIs

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

MX1014 is a flexible, lightweight and fast port scanner.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Mass scan IPs for vulnerable services

Scanner, signatures and the largest collection of Magento malware

Snoop — инструмент разведки на основе открытых данных (OSINT world)

被动式漏洞扫描系统

网络资产发现、漏洞扫描

Scan only once by IP address and reduce scan times with Nmap for large amounts of data.

Python Security Scripts

Web path scanner

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A scanner for Moodle LMS

🖖 Fast, modern, easy-to-use network scanner

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

🔍 Tool for - Host Discovery, Port Scanning and Operating System Fingerprinting

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Idiomatic nmap library for go developers

WebMap-Nmap Web Dashboard and Reporting

Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

SEC分布式资产扫描系统

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

A toolkit for Security Researchers

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

Pentest: Subdomains enumeration tool for penetration testers.

DNTScanner.Core is a .NET 4x and .NET Core 2x+ wrapper for the Windows Image Acquisition library.

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

Monitoring GitHub for sensitive data shared publicly

Fast and extensible network scanning library featuring multithreading, ping probing, and scan fetchers.

🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐

Unofficial WhatCMS API package

Backend logic implementation for Vulnerability Management System

Turn your VPS into an attack box

findCDN is a tool created to help accurately identify what CDN a domain is using.

Open Source SIEM (Security Information and Event Management system).

A memorial site for Hackers and Infosec people who have passed

Terraform module for enabling flow logs for vpc and subnets.

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Side-channel file transfer between independent VMs or processes executed on the same physical host.

Spin up new Windows qubes quickly, effortlessly and securely on Qubes OS

Exporting MISP event attributes to yara rules usable with Thor apt scanner