729 Open source projects that are alternatives of or similar to Subscraper

A shot-for-shot remake of the Google Login Page.

NTP Doser is a NTP Amplification DoS/DDoS attack tool for penttesting

Collect email addresses by crawling search engine results.

cms识别

GUI based offensive penetration testing tool (Open Source)

A simple, extensible C&C beaconing system.

Penetration tests on SSH servers using brute force or dictionary attacks. Written in Python.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Selenium powered Python script to automate searching for vulnerable web apps.

A Collection of articles, videos, blogs, talks and other materials on Node.js Security

Get GTFOBins info about a given exploit from the command line

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

PENIOT: Penetration Testing Tool for IoT

An RPC attack framework for Blockchain nodes.

Rustcat(rcat) - The modern Port listener and Reverse shell

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

my oscp prep collection

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

This Script will produce all of the WPA2 Passwords used by various Router companies aswell as Fritzbox. All of these Passwords will be 16 Numbers in length. So it could get a bit large.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

This program focuses on automating the download, installation and compilation of pentest tools from source

Dumain Bruteforcer - a fast and flexible domain bruteforcer

CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.

A collection of Ansible roles for automating infosec builds.

List of Bluetooth BR/EDR/LE security resources

Script to spider a website and find publicly open S3 buckets

Web App Pen Tester (Web Interface)

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

Automated Web Recon Shell Scripts

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

Work in progress...

🔪 Leak git repositories from misconfigured websites

🔑 ftpknocker is a multi-threaded scanner for finding anonymous FTP servers

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

VOIP Security Audit Framework

Detect hidden files and text in images

nuclei framework scripts

🖖 Fast, modern, easy-to-use network scanner

Modular personalized dictionary generator.

Automated script to run all modules for a specified list of domains, netblocks or company name

Credentials Checking Framework

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Fast website scraper and wordlist generator

Python AV Evasion Tools

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.

It's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)

My personal bug bounty toolkit.

Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A pentesting tool inspired by mr robot and derived by zphisher

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

A repository for scripting a mobile attack toolchain

PowerShell payload generator

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust