2106 Open source projects that are alternatives of or similar to Sifter

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

my oscp prep collection

Next generation web scanner

A high performance offensive security tool for reconnaissance and vulnerability scanning

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Pentest: Subdomains enumeration tool for penetration testers.

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Intelligence and Reconnaissance Package/Bundle installer.

Selenium powered Python script to automate searching for vulnerable web apps.

Useful tools and scripts during Penetration Testing engagements

Mass scan IPs for vulnerable services

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Open source all-in-one CLI tool to semi-automate pentesting.

Python network tool, similar to Netcat with custom features.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Semi-automatic OSINT framework and package manager

Automated All-in-One OS Command Injection Exploitation Tool.

Vagrant VirtualBox environment for conducting an internal network penetration test

NetCat for Windows

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

pentest framework

fsociety Hacking Tools Pack – A Penetration Testing Framework

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Python 3.5+ DNS asynchronous brute force utility

OSINT Tool: Generate username lists for companies on LinkedIn

🔐 Docker Container for Penetration Testing & Security

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A tool to hunt for publicly accessible DigitalOcean Spaces

An advanced tool for email reconnaissance

Automatically Launch Google Hacking Queries Against A Target Domain

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Network footprint scanner platform. Discover domains and run your custom checks periodically.

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

🖖 Fast, modern, easy-to-use network scanner

OSINT

A tool to automate penetration tests

Multi source CVE/exploit parser.

Related subdomains finder

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

A collection of useful links for Pentesters

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Yet Another PHP Shell - The most complete PHP reverse shell

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

swiss army knife for hackers

A Tool for Domain Flyovers

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

备考 OSCP 的各种干货资料/渗透测试干货资料