175 Open source projects that are alternatives of or similar to Struts2_check

a fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust

Tool to communicate with RPC services and check misconfigurations on NFS shares

Go library for credentials recovery

wifi attacks suite

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

🔑 ftpknocker is a multi-threaded scanner for finding anonymous FTP servers

Automated Pentest Tools Designed For Parrot Linux

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

Python Script to help/automate the WiFi hacking exercises.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

A tool for generating reverse shell payloads on the fly.

Multi source CVE/exploit parser.

Quick SQL Scanner, Dorker, Webshell injector PHP

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Rustcat(rcat) - The modern Port listener and Reverse shell

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

Credentials Checking Framework

generates weak passwords based on current date

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

整理一些内网常用渗透小工具

The LAZY script will make your life easier, and of course faster.

an easy pentesting tool.

The main SamuraiWTF collaborative distro repo.

A minimalist command line knowledge base manager

🔥 A high-performant UDP load generator, written in Rust

红/蓝队环境自动化部署工具

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

📱 🐟 An app to remote control SocialFish.

The all-in-one Red Team extension for Web Pentester 🛠

Pentest tool for antivirus evasion and running arbitrary payload on target Wintel host

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

A unified console to perform the "kill chain" stages of attacks.

A high performance offensive security tool for reconnaissance and vulnerability scanning

🔐 Docker Container for Penetration Testing & Security

Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

A ZigBee hacking toolkit by Bishop Fox

RubberDucky like payloads for DigiSpark Attiny85

💫 An asynchronous Low & Slow traffic generator, written in Rust

Relational database brute force and post exploitation tool for MySQL and MSSQL

备考 OSCP 的各种干货资料/渗透测试干货资料

XSS'OR - Hack with JavaScript.

Tool Information Gathering & social engineering Write By [Python,JS,PHP]

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

Domain name permutation engine written in Go

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

An information gathering tool to collect git commit emails in version control host services

SMB Relay Attack Script

Docker images for infosec tools

A wrapper for Nmap to quickly run network scans

A tool to test security of json web token

Penetration test Achieve Knowledge Unite Rapid Interface