1842 Open source projects that are alternatives of or similar to Sippts

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

SIP-Based Audit and Attack Tool

A REST API security testing framework.

Extract subdomains from SSL certificates in HTTPS sites.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Awesome cloud enumerator

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

A tool to automate penetration tests

Dockerized FreePBX 15 w/Asterisk 17, Seperate MySQL Database support, and Data Persistence and UCP

The all-in-one Red Team extension for Web Pentester 🛠

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Intelligence and Reconnaissance Package/Bundle installer.

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Katari - Python Session Initiated Protocol Framework

VOIP Security Audit Framework

pentest framework

Yet Another PHP Shell - The most complete PHP reverse shell

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

☎️ Original open source call flooder using Twilio's API.

Open Redirect Payloads

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

XSHOCK Shellshock Exploit

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

🤖 The Modern Port Scanner 🤖

A curated list of awesome privilege escalation

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Simple and fast viewer for Asterisk CDRs and Recordings (Mod)

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

A Python Tool For google Hacking

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Automatically Launch Google Hacking Queries Against A Target Domain

Penetration Testing notes, resources and scripts

👻Impost3r -- A linux password thief

network reconnaissance toolkit

Quickly analyze and reverse engineer Android packages

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

C2/post-exploitation framework

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Exploit Pack -The next generation exploit framework

HOMER 7.x Front-End and API Server

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

SIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Routr: Next-generation SIP Server

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

swiss army knife for hackers

hydra

A fully featured browser based WebRTC SIP phone for Asterisk

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能