729 Open source projects that are alternatives of or similar to Subscraper

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

link is a command and control framework written in rust

a fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust

An advanced command-line search engine for Exploit-DB

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

JSON RSA to HMAC and None Algorithm Vulnerability POC

Automated tool for WiFi hacking.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Pentester's Promiscuous Notebook

This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

Totally Insecure Web Application Project (TIWAP)

Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

Executes common PowerSploit Powerview functions then combines output into a spreadsheet for easy analysis.

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

BadUSB Teensy downexec exploit support Windows & Linux / Windows Cmd & PowerShell addUser exploit

Company Passwords Profiler (aka ComPP) helps making a bruteforce wordlist for a targeted company.

Top 20 Kali Linux Related E-books (Free Download)

Dark-Phish is a complete phishing tool. For more about Dark-Phish tool please visit the website.

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

A web application for generating custom XSS payloads

General stuff for pentesting - password cracking, phishing, automation, Kali, etc.

Reverse shell manager using tmux and ncat

useful pentest note

Penetration Test Framwork

No description or website provided.

:.IP webcam penetration test suit.:

A tool for fuzzing for ports that allow outgoing connections

Nmap and NSE command line wrapper in the style of Metasploit

WordPress pentest tool

多合一网站指纹扫描器，轻松获取网站的 IP / DNS 服务商 / 子域名 / HTTPS 证书 / WHOIS / 开发框架 / WAF 等信息

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Pentest/BugBounty progress control with scanning modules

Command line tool that allows you to explore IoT devices by using Shodan API.

Misc. Public Reports of Penetration Testing and Security Audits.

Vulnerability assessment and penetration testing automation and reporting platform for teams.

wifi attacks suite

Custom security distro for remote penetration testing

Domain availbility checker

Collection of several DDos tools.

cms识别

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

Obtain GraphQL API Schema even if the introspection is not enabled

Selenium powered Python script to automate searching for vulnerable web apps.

Statically-linked ssh server with reverse shell functionality for CTFs and such

A simple, extensible C&C beaconing system.

Ladon Moudle MS17010 Exploit for PowerShell

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

recon-ng modules for Censys

PENIOT: Penetration Testing Tool for IoT

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

A collection of resources I'm using while working toward the OSCP

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

List of Bluetooth BR/EDR/LE security resources