402 Open source projects that are alternatives of or similar to teatime

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Cheat-Sheet of tools for penetration testing

Penetration Test Framwork

PENIOT: Penetration Testing Tool for IoT

A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.

Totally Insecure Web Application Project (TIWAP)

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

Notes from OSCP, CTF, security adventures, etc...

pure python remote adb scanner + nmap scan module

Solana's .NET SDK and integration library.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)

dotnet high performance remote interface and delegate invoke(RPC) communication components,support millions RPS remote interface method invokes

RPC-like client-service implementation over messaging queue

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Script to spider a website and find publicly open S3 buckets

General stuff for pentesting - password cracking, phishing, automation, Kali, etc.

Automated Web Recon Shell Scripts

Scripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited

Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )

WordPress pentest tool

Tools used for Penetration testing / Red Teaming

brute force SSH public-key authentication

pentest toolbox

Collection of several DDos tools.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Multi source CVE/exploit parser.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

recon-ng modules for Censys

My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

GRPC based API CRUD using Nodejs at both server and client side

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

AutoPentest-DRL: Automated Penetration Testing Using Deep Reinforcement Learning

Boxer: A fast directory bruteforce tool written in Python with concurrency.

Dark-Phish is a complete phishing tool. For more about Dark-Phish tool please visit the website.

Opening the door, one reverse shell at a time

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

Lower-level API for interfacing with the NEAR Protocol via JSONRPC.

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

My personal bug bounty toolkit.

Automated Pentest Tools Designed For Parrot Linux

:.IP webcam penetration test suit.:

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

Search Google and download specific file types

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

Common interface definition based rpc implementation

Odoo Client Json Rpc

A friendly Toolkit for Beginner CTF players

GoPhish Templates that I have retired and/or templates I've recreated.

Go library for credentials recovery

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

Obtain GraphQL API Schema even if the introspection is not enabled

Automated script to run all modules for a specified list of domains, netblocks or company name

A Security Tool for Enumerating WebSockets

The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow

JSON RSA to HMAC and None Algorithm Vulnerability POC

A simple, extensible C&C beaconing system.