1061 Open source projects that are alternatives of or similar to TIWAP

No description or website provided.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Dradis Framework: Colllaboration and reporting for IT Security teams

Find cloud assets that no one wants exposed 🔎 ☁️

Cameradar hacks its way into RTSP videosurveillance cameras

A Deliberately Insecure Web Application

A curated list of awesome infosec courses and training resources.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Common password pattern generator using strings list

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

GitBook: OSCP RoadMap

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

A default credential scanner.

Collection of several DDos tools.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

A Tool for Domain Flyovers

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Pentest Report Generator

An advanced tool for email reconnaissance

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

Wireshark Cheat Sheet

Damn Vulnerable Web Application (DVWA)

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

🔐 Docker Container for Penetration Testing & Security

Get GTFOBins info about a given exploit from the command line

A training curriculum for teaching information security "champions" within small organisations and helping them conduct a basic assessment. (Work in progress)

Gorsair hacks its way into remote docker containers that expose their APIs

Pentest: Subdomains enumeration tool for penetration testers.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

A collection of resources I'm using while working toward the OSCP

Idiomatic nmap library for go developers

Web path scanner

DDTTX Tabletop Trainings

Multi source CVE/exploit parser.

Script to spider a website and find publicly open S3 buckets

Sample app for using Entity Framework Core 2.0 on .NET Standard with SQLite for Xamarin Forms.

📚 A Electron + Vite boilerplate of the nature of learning(source-code of vite-plugin-electron) / 学习性的样板工程(vite-plugin-electron源码)

📊 Python Flask game that consolidates data from Nasdaq, allowing the user to practice buying and selling stocks.

Bulk query SQLite database over the network

Dark-Phish is a complete phishing tool. For more about Dark-Phish tool please visit the website.

Git Workshop covering git essentials & advanced topics

TODO API Client Kata for Kotlin Developers. The main goal is to practice integration testing using MockWebServer

App to easily query, script, and visualize data from every database, file, and API.

Go library for credentials recovery

A modern, fast and productivity driven SQL client with a focus in UX.

🐍 This is the most complete course in Python, completely practical and all the lessons are explained with examples, so that they can be easily understood. 🍫

Lightweight C++ 11 library for SQLite

An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.

Galaxy Admin Training

SQL-first Golang ORM

Little Bug Bounty & Hacking Tools⚔️

Aplicação para registo e acompanhamento de encomendas da CTT Expresso, automatiza a consulta online do estado de tracking para várias remessas e mantém um registo dos pagamentos referentes aos envios à cobrança. As remessas que requerem atenção, devido a atrasos na entrega ou na receção do pagamento correspondente, bem como os cheques cuja data …