613 Open source projects that are alternatives of or similar to Sqlite Lab

Set of tools to audit SIP based VoIP Systems

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

Dradis Framework: Colllaboration and reporting for IT Security teams

Automated NoSQL database enumeration and web application exploitation tool.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Hacking Toolkit

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Web Application Security Scanner Framework

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Just another script for automatize boolean-based blind SQL injections. (Demo)

Semi-automatic OSINT framework and package manager

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

This repository contains full code examples from the book Gray Hat C#

被动式漏洞扫描系统

Powerful Visual Subdomain Enumeration at the Click of a Mouse

A simple tool for interacting with OWASP ZAP from the commandline.

Automatic SQL injection and database takeover tool

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

List of every possible vulnerabilities in computer security.

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Web Content Discovery Tool

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A wrapper for Nmap to quickly run network scans

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

GUI based offensive penetration testing tool (Open Source)

This Repository contains the stuff related to windows Active directory environment exploitation

Centralize Vulnerability Assessment and Management for DevSecOps Team

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

A tool to hunt for publicly accessible DigitalOcean Spaces

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

An evil RAT (Remote Administration Tool) for macOS / OS X.

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

SSRF (Server Side Request Forgery) testing resources

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

A tool to abuse Exchange services

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Study Notes For Web Hacking / Web安全学习笔记

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

The ultimate WinRM shell for hacking/pentesting

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

Send encrypted PGP messages with one click

Wordpress Vulnerability Scanner

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

Encoder to bypass WAF filters using XOR operations

A tool to test security of json web token

Audit Windows Security with best Practice

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A Cloudflare resolver that works

📡 A python program to create a fake AP and sniff data.

Human and machine readable web vulnerability testing format