385 Open source projects that are alternatives of or similar to titanm

wide range mass audit toolkit

PyJFuzz - Python JSON Fuzzer

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Constraint solver based on coverage-guided fuzzing

Advanced dork Search & Mass Exploit Scanner

syzkaller is an unsupervised coverage-guided kernel fuzzer

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Linux Binary Exploitation

JQF + Zest: Coverage-guided semantic fuzzing for Java.

A collection where my current and future writeups for exploits/CTF will go

Crowdsourced fuzzing cluster. 🚀

Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 14 vulnerability techniques)

A friendly car security exploration tool for the CAN bus

Attify OS - Distro for pentesting IoT devices

A container repository for my public web hacks!

An IDA Pro plugin to examine the glibc heap, focused on exploit development

Fuzzer for Linux Kernel Drivers

mXtract - Memory Extractor & Analyzer

Rockyou for web fuzzing

Course materials for Modern Binary Exploitation by RPISEC

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

fireELF - Fileless Linux Malware Framework

A fuzzing library in JavaScript. ✨

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

Fuzzing cryptographic libraries. Magic bug printer go brrrr.

A container analysis and exploitation tool for pentesters and engineers.

Borrowed Instructions Synthetic Computation

Automatic SQL injection and database takeover tool

A few SQL and XSS attack tools

Linux Heap Exploitation Practice

Command line tool for testing CRLF injection on a list of domains.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Thin interface for libFuzzer, an in-process, coverage-guided, evolutionary fuzzing engine.

Medfusion 4000 security research & a MQX RCE.

A fuzzer for full VM kernel/driver targets

MS17-010: Python and Meterpreter

Python based tool for testing whether your API conforms to its Swagger schema

Format string exploitation helper

DOM fuzzer

Challenges and vulnerabilities exploitation.

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

EmpireCTF – write-ups, capture the flag, cybersecurity

JavaFuzz 4 Android

Microarchitectural exploitation and other hardware attacks.

Software Papers as Software Modules: Towards a Culture of Reusable Results

How to exploit a double free vulnerability in 2021. Use After Free for Dummies

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

You are probably looking for: https://github.com/ViRb3/magisk-frida

Some VxWorks fuzzing examples using Cisco-Kitty and WDBDbg framework

Linux and Windows shellcode enrichment utility

Easy fuzzing with go-fuzz

Contextual Bandits in R - simulation and evaluation of Multi-Armed Bandit Policies

Extract endpoints marked as disallow in robots files to generate wordlists.

💀 A bash hacking and scanning framework.

Companion repository to the Fuzzing101 with LibAFL series of blog posts.

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

Janus: a state-of-the-art file system fuzzer on Linux

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.