1044 Open source projects that are alternatives of or similar to Trigmap

Fully automated offensive security framework for reconnaissance and vulnerability scanning

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Useful tools and scripts during Penetration Testing engagements

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A fast web directory/file enumeration tool written in Rust

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

A web front-end for password cracking and analytics

MSDAT: Microsoft SQL Database Attacking Tool

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

🤖 The Modern Port Scanner 🤖

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Penetration test Achieve Knowledge Unite Rapid Interface

Burp extension to passively scan for applications revealing software version numbers

Steganography brute-force utility to uncover hidden data inside files

Tool Information Gathering Write By Python.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Pentest Report Generator

Automatically Launch Google Hacking Queries Against A Target Domain

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Automation for internal Windows Penetrationtest / AD-Security

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Exploit Pack -The next generation exploit framework

👻Stowaway -- Multi-hop Proxy Tool for pentesters

NetCat for Windows

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Automate Pentest Tool

Hack the World using Termux

Penetration tests guide based on OWASP including test cases, resources and examples.

Ruby on Rails Phishing Framework

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Interactive Network Scanner

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

The Last Web Recon Tool You'll Need

ODAT: Oracle Database Attacking Tool

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Study Notes For Web Hacking / Web安全学习笔记

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Collection of the cheat sheets useful for pentesting

Hacker101 CTF Writeup

C2/post-exploitation framework

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A Cloudflare resolver that works