729 Open source projects that are alternatives of or similar to Subscraper

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

scripts to setup pentesting system and use during pentest

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

Work in progress...

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

🖖 Fast, modern, easy-to-use network scanner

Modular personalized dictionary generator.

Automated script to run all modules for a specified list of domains, netblocks or company name

Credentials Checking Framework

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

Collection of tips, tools and tutorials around infosec

A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.

A Modular Penetration Testing Framework

pentest toolbox

My personal bug bounty toolkit.

Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A pentesting tool inspired by mr robot and derived by zphisher

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

A repository for scripting a mobile attack toolchain

Network Security Vulnerability Scanner

VNC pentest tool with bruteforce and ducky script execution features

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Related subdomains finder

An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)

PowerShell payload generator

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust

IPv6 attack toolkit

汽车/安卓/固件/代码安全测试工具集

Ruby on Rails Phishing Framework

Python-based CLI Password Analyser (Reporting Tool)

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

USB Rubber Ducky type scripts written for the DigiSpark.

My notebook for OSCP Lab

DotDotPwn - The Directory Traversal Fuzzer

A dictionary attack tool for PostgreSQL and MSSQL

集漏洞验证和任务运行的一个框架

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

A Security Tool for Enumerating WebSockets

Microsoft Azure Exploitation Framework

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

NTP Doser is a NTP Amplification DoS/DDoS attack tool for penttesting

Turn PuTTY into an SSH login bruteforcing tool.

Penetration tests on SSH servers using brute force or dictionary attacks. Written in Python.

AutoPentest-DRL: Automated Penetration Testing Using Deep Reinforcement Learning

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Kali image with kali-linux-full metapackage installed, build every night.

My notes on PentesterLab's Bootcamp series 🕵️

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Scripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited

In my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them

Directory/Subdomain scanner developed in GoLang.

Command line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…

整理一些内网常用渗透小工具

渗透测试☞经验/思路/总结/想法/笔记