625 Open source projects that are alternatives of or similar to Watf Bank

An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Our OSCP repo: from popping shells to mental health.

Micro-framework for rapid development of reusable security tools

📱 🖥 Create Mobile First apps, Web and Native sharing the code with Angular 🎉

Android library to draw beautiful and rich line charts.

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

Venom - A Multi-hop Proxy for Penetration Testers

My OSCP journey

An automated wrapper script for patching iOS applications (IPA files) and work on non-jailbroken device

A .NET Standard library for pentesting web apps against credential stuffing attacks.

A E-Hentai reader written in Flutter.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

A set of recipes useful in pentesting and red teaming scenarios

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Subdomain Takeover tool written in Go

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

The Collective. A repo for a collection of red-team projects found mostly on Github.

Minimalist Weather App using React Native

🔑 Android app for Passman.

⛺️ Hotels App: A simple react-native App exercise with nodeJS API consumption

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.

Restaurant Food Ordering Mobile Application

FLUTTER UI Showcase

BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.

An example React native mobile app to help you get started with Alpaca

An extensible application for penetration testers and software developers to decode/encode data into various formats.

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

The best Hacking and PenTesting tools installer on the world

The iOS Security Testing Framework

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Mobile app for calculation of gasoline/oil ratio for 2 stroke engines built with React Native.

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Responsive Command and Control System

PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Browse and search through nmap's NSE scripts.

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

Objective-C and Swift projects using the HERE SDK for iOS.

Fast browser-based network discovery module

⛔️ offsec batteries included

News Reader App to fetch Articles from different news channels using Flutter.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Script samples from the book Pentesting Azure Applications (2018, No Starch Press)

Simple Server Side Request Forgery services enumeration tool.

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

Privilege Escalation Enumeration Script for Windows

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Empire HTTP(S) C2 redirector setup script

Example app build with Flutter

Flutter app for Tweety

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

BlackRAT - Java Based Remote Administrator Tool

Exploit pack for pentesters and ethical hackers.

🔪 Leak git repositories from misconfigured websites