1028 Open source projects that are alternatives of or similar to Spaces Finder

RFD Checker - security CLI tool to test Reflected File Download issues

OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

A browser extension for OSINT search

A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Data collected from publicly available sources to be used in an intelligence context

An Instagram Open Source Intelligence Tool

Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).

Powerful Visual Subdomain Enumeration at the Click of a Mouse

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Visualize Erlang/Elixir Nodes On The Command Line

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

Reconnaissance Swiss Army Knife

A swiss army knife for pentesting networks

Darknet OSINT Transform

shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.

A flexible control server for osquery fleets

Notes for taking the OSCP in 2097. Read in book form on GitBook

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

⛔️ offsec batteries included

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

My OSCP journey

OSINT tool to find breached emails, databases, pastes, and relevant information

Human and machine readable web vulnerability testing format

All MITM attacks in one place.

Security tool to trace URL's jumps across the rel links to obtain the last URL

Directory/File, DNS and VHost busting tool written in Go

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

Attack Surface Management Platform | Sn1perSecurity LLC

NetCat for Windows

Useful tools and scripts during Penetration Testing engagements

Simple Server Side Request Forgery services enumeration tool.

Penetration Testing notes, resources and scripts

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Bloodhound for Blue and Purple Teams

A .NET Standard library for pentesting web apps against credential stuffing attacks.

Open source pre-operation C2 server based on python and powershell

A Fast Broken Link Hijacker Tool written in Python

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

🕵️‍♂️ Investigate Google emails and documents.

A fast http and https prober, to check which URLs are alive

PowerShell framework to assess Azure security

Your Everyday Threat Intelligence

Handbook of information collection for penetration testing and src

Open Source Intelligence Browser Extension

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

protocol fuzzing toolkit

Python3 script to parse txt files containing Mimikatz output

This challenge is Inon Shkedy's 31 days API Security Tips.

Hershell is a simple TCP reverse shell written in Go.

🌰 An onion url inspector for inspecting deep web links.

Privilege Escalation Enumeration Script for Windows

Extract and aggregate threat intelligence.

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

Credential stuffing engine built for security professionals

A collection of response templates for invalid bug bounty reports.