1075 Open source projects that are alternatives of or similar to Shuriken

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

A container repository for my public web hacks!

Automatic SQL injection and database takeover tool

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

File upload vulnerability scanner and exploitation tool.

Automated All-in-One OS Command Injection Exploitation Tool.

List of every possible vulnerabilities in computer security.

A Deliberately Insecure Web Application

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

Human and machine readable web vulnerability testing format

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

fully automated pentesting tool

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Exploit Pack -The next generation exploit framework

A fast DOM based XSS vulnerability scanner with simplicity.

Source code for Hacker101.com - a free online web and mobile security class.

👨‍🏫 Mike's Web Security Course

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.

Web Application Security Scanner Framework

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Sifter aims to be a fully loaded Op Centre for Pentesters

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

fireELF - Fileless Linux Malware Framework

Automation for internal Windows Penetrationtest / AD-Security

A list of resources for those interested in getting started in bug bounties

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

Advanced dork Search & Mass Exploit Scanner

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

mXtract - Memory Extractor & Analyzer

Linux and Windows shellcode enrichment utility

Notes for taking the OSCP in 2097. Read in book form on GitBook

Responsive Command and Control System

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Collection of quality safety articles. Awesome articles.

开源人脸口罩检测模型和数据 Detect faces and determine whether people are wearing mask.

Implementation EfficientDet: Scalable and Efficient Object Detection in PyTorch

Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.

Elasticsearch for Offensive Security

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

A collection of public offensive and defensive security related scripts for InfoSec students.

RRD: Rotation-Sensitive Regression for Oriented Scene Text Detection

Yet another yolov5, with its runtime stack for libtorch, onnx, tvm and specialized accelerators. You like torchvision's retinanet? You like yolov5? You love yolort!

YOLO V2 & V3 , YOLO Combined with RCNN and MaskRCNN

Linux enumeration tool for pentesting and CTFs with verbosity levels

Table Detection and Extraction Using Deep Learning ( It is built in Python, using Luminoth, TensorFlow<2.0 and Sonnet.)

SSD: Single Shot MultiBox Detector pytorch implementation focusing on simplicity

Collection of resources for my preparation to take the OSEE certification.

Automatic SSRF fuzzer and exploitation tool

A framework for secure and scalable network traffic analysis - https://netcap.io

Fast Modular Web Interfaces Bruteforcer

A step-by-step walkthrough of CloudGoat 2.0 scenarios.

和鲸社区Kesci 水下目标检测算法赛（光学图像赛项）三等奖 单模方案

解析VIP资源，解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址

A curated list of various bug bounty tools