944 Open source projects that are alternatives of or similar to Ssrfmap

Web path scanner

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Simple and fast implementation of enumerations with native PHP

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

A high performance offensive security tool for reconnaissance and vulnerability scanning

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Hawkeye filesystem analysis tool

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A python tool to check subdomain takeover vulnerability

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Micro-framework for rapid development of reusable security tools

Subdomain Takeover tool written in Go

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

Extract endpoints marked as disallow in robots files to generate wordlists.

Notes for taking the OSCP in 2097. Read in book form on GitBook

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

无状态子域名爆破工具

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Intelligence and Reconnaissance Package/Bundle installer.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Relational database brute force and post exploitation tool for MySQL and MSSQL

Monitor linux processes without root permissions

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Python 3.5+ DNS asynchronous brute force utility

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

A Powerful Subdomain Takeover Tool

Semi-automatic OSINT framework and package manager

BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.

A Vue JS component for displaying dynamic data on a world map.

university project : Android pizza delivery app

Mobile-first 3D mapping engine with emphasis on user experience

UIUtil for Android, Lyrics, Tick animations, Comparisons, Satellite menus, Praise, Slide buttons, TAB indicators, Contact sorting, Drag sorting, Skidding deletes, Shadow effects, RecyclerView nesting RecyclerView, Map list Poi/Drawer effects, Progress settings, Clock set, Damping, Progress, Album, Snap, Progress, CircleDownload, AdvertSwitcher, Carousel ad, FlowLayout, Tag...; 歌词控件、打勾动画、对比、卫星菜单、点赞、滑动按钮、TAB指示器、联系人排序、拖曳排序、侧滑删除、阴影效果.、RecyclerView嵌套RecyclerView.、地图列表Poi/抽屉效果、进度设置、时钟设置、滑动阻尼、相册媒体快照、圆形下载进度，轮播广告, 流式布局，标签...

Finds a function that transforms a given object into another given object.

Single-file PHP shell

libgenerics is a minimalistic and generic library for C basic data structures.

A shell script that automatically performs a series of *NIX enumeration tasks.

Highcharts 中国地图，Highcharts 中国省市地图，Highcharts China Map，南海诸岛geo

A Fast Broken Link Hijacker Tool written in Python

Privilege Escalation Enumeration Script for Windows

A simple keylogger for Windows, Linux and Mac

A repo with information about security of Ethereum Smart Contracts

Dump exposed HTTP .git fast

DNS Sub-domain brute forcer, in Python + gevent

A collaborative, open legislative redistricting tool, built atop GitHub.

Vector map library and writer - running on Android and Desktop.

School 42 project // 3D Wireframe Viewer

An online app to view your X-Plane flight