1646 Open source projects that are alternatives of or similar to Vulmap

Web path scanner

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

A tool to test security of json web token

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Next generation web scanner

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

👻Impost3r -- A linux password thief

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

Exploit Pack -The next generation exploit framework

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Multi source CVE/exploit parser.

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Yet Another PHP Shell - The most complete PHP reverse shell

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

The Swiss Army knife for automated Web Application Testing

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

Hacking Toolkit

WEB SERVICE SECURITY ASSESSMENT TOOL

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

my oscp prep collection

A social experiment

Set of tools to audit SIP based VoIP Systems

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Hourly updated database of exploit and exploitation reports

🚀 Fast Port Scanner 🚀

A REST API security testing framework.

Attack Surface Management Platform | Sn1perSecurity LLC

🆕 The Multi-Tool Web Vulnerability Scanner.

hydra

🎖safely* install packages with npm or yarn by auditing them as part of your install process

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

C2/post-exploitation framework

pentest framework

A web front-end for password cracking and analytics

OWASP Joomla Vulnerability Scanner Project

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A static analysis security vulnerability scanner for Ruby on Rails applications

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

被动式漏洞扫描系统