694 Open source projects that are alternatives of or similar to Swiftness

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Tools of "The Bug Hunters Methodology V2 by @jhaddix"

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

OSS Vulnerability Scanner for Windows Platform

Fully automated offensive security framework for reconnaissance and vulnerability scanning

HostHunter a recon tool for discovering hostnames using OSINT techniques.

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

🆕 The Multi-Tool Web Vulnerability Scanner.

Identify vulnerabilities in running containers, images, hosts and repositories

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

DNS-Discovery is a multithreaded subdomain bruteforcer.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Automated NoSQL database enumeration and web application exploitation tool.

This repository created for personal use and added tools from my latest blog post.

An automated target reconnaissance pipeline.

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

The Swiss Army knife for automated Web Application Testing

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Web Application recon automation

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

List of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A curated list of various bug bounty tools

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

All-in-one tool for managing vulnerability reports from AppSec pipelines

A binary analysis framework

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

EmbedOS - Embedded security testing virtual machine

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Hunt down the secrets from the WebArchives for Fun and Profit

A JWT (JSON Web Token) Encoder & Decoder

Automating XSS using Bash

protocol fuzzing toolkit

Curated List of Privacy Respecting Services and Software

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A tool to check a bunch of URLs that contain reflecting params.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Simplifying Seccomp enforcement in containerized or non-containerized apps

Common password pattern generator using strings list

Urls de-duplication tool for better recon.

Cloud Discovery provides a point in time enumeration of all the cloud native platform services

Awesome hacking is an awesome collection of hacking tools.

Community curated list of templates for the nuclei engine to find security vulnerabilities.

A collection of public offensive and defensive security related scripts for InfoSec students.