1586 Open source projects that are alternatives of or similar to Vajra

A permutation generation tool written in golang

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

RubberDucky like payloads for DigiSpark Attiny85

Hawkeye filesystem analysis tool

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

The all-in-one Red Team extension for Web Pentester 🛠

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Tool Information Gathering Write By Python.

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Automatically Launch Google Hacking Queries Against A Target Domain

OSINT Tool: Generate username lists for companies on LinkedIn

In-depth Attack Surface Mapping and Asset Discovery

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

An automated e-mail OSINT tool

E-mails, subdomains and names Harvester - OSINT

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Enumerate information from NTLM authentication enabled web endpoints 🔎

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

OSINT

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Infoga - Email OSINT

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

A fast GitHub stargazers information gathering tool

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

An automated target reconnaissance pipeline.

List of Awesome Asset Discovery Resources

a recon tool that allows searching on URLs that are exposed via shortener services

Incredibly fast crawler designed for OSINT.

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

A toolkit for Security Researchers

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

OnionSearch is a script that scrapes urls on different .onion search engines.

Offensive tools as Dockerfiles. Lightweight & Ready to go

Simple multi threaded tool to extract domain related data from commoncrawl.org

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Paskto - Passive Web Scanner

Tool to automate common OSINT tasks

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

Burp Suite extension to discover assets from HTTP response.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Discover internet-wide misconfigurations while drinking coffee

Web Application Security Scanner Framework

A passive subdomain finder

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

This tool gives information about the phone number that you entered.

Extracting URLs of a specific target based on the results of "commoncrawl.org"