2889 Open source projects that are alternatives of or similar to V3n0m Scanner

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

DNS Sub-domain brute forcer, in Python + gevent

Next generation web scanner

OWASP Joomla Vulnerability Scanner Project

Web path scanner

An interactive multi-user web JS shell

👻 A LAN dropbox chatbot controllable via Telegram

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Easy files and payloads delivery over DNS

Simple DNS Rebinding Service

基于sanic的微服务基础架构

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

OSINT

Information Gathering tool for a Website or IP address

IoT 固件漏洞复现环境

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

WEB SERVICE SECURITY ASSESSMENT TOOL

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

My own OSCP guide

Simple DNS resolver for asyncio

Python 3.5+ DNS asynchronous brute force utility

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Extract subdomains from SSL certificates in HTTPS sites.

A Python Tool For google Hacking

🤖 The Modern Port Scanner 🤖

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

A dynamic DNS client tool supports AliDNS, Cloudflare, Google Domains, DNSPod, HE.net & DuckDNS & DreamHost, etc, written in Go.

Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable

Script for getting unlimited GB on Warp+ ( https://1.1.1.1/ )

Idiomatic nmap library for go developers

Sifter aims to be a fully loaded Op Centre for Pentesters

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

A curated list of awesome privilege escalation

Quickly analyze and reverse engineer Android packages

Extract endpoints from APK files

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

🆕 The Multi-Tool Web Vulnerability Scanner.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Automatically Launch Google Hacking Queries Against A Target Domain

The hackers tool belt

Configuration profiles for DNS HTTPS and DNS over TLS for iOS 14 and MacOS Big Sur

Handbook of information collection for penetration testing and src

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

slacker wrapper for asyncio

This is a multi-use bash script for Linux systems to audit wireless networks.

Advisories, proof of concept files and exploits that have been made public by @pedrib.

DNS Rebinding Exploitation Framework

A front-end JavaScript toolkit for creating DNS rebinding attacks.