1032 Open source projects that are alternatives of or similar to Watchdog

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

🆕 The Multi-Tool Web Vulnerability Scanner.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

🎯 Command Injection Payload List

All-in-one tool for managing vulnerability reports from AppSec pipelines

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Hacking Toolkit

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Next generation web scanner

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Exploit Pack -The next generation exploit framework

NERVE Continuous Vulnerability Scanner

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Web application vulnerability scanner

Identify vulnerabilities in running containers, images, hosts and repositories

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Open-Source Security Architecture | 开源安全架构

A note-taking macOS app for penetration-testers.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

A ZigBee hacking toolkit by Bishop Fox

Tools of "The Bug Hunters Methodology V2 by @jhaddix"

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

OneForAll是一款功能强大的子域收集工具

memory search and patch tool on debuggable apk without root & ndk

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Fuzz your Rust code with Google-developed Honggfuzz !

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Advanced and easy to use penetration testing framework 💣🔎

Awesome Java Security Resources 🕶☕🔐

🔎 shodansploit > v1.3.0

Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Search for Directory Traversal Vulnerabilities

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

zBang is a risk assessment tool that detects potential privileged account threats

Credentials Checking Framework

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

Related subdomains finder

🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯

Full Nuclei automation script with logic explanation.

Tool made to automate tasks of pentesting.

HackerOne "in scope" domains

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Information Security Library

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Misc. Public Reports of Penetration Testing and Security Audits.

Pentesting/Bugbounty Dockerfiles.

Yet Another PHP Shell - The most complete PHP reverse shell

Open Redirect scanner - (out of date)