572 Open source projects that are alternatives of or similar to Wavecrack

nray distributed port scanner

Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Password Crack Framework

See if your passwords in pass has been breached.

Golang library for generating passphrases via the diceware algorithm.

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

密码生成 flexible and scriptable password dictionary generator which can support brute-force、combination、complex rule mode etc...

C2Hack, sharing tips and tricks for pentesters

Generate secure passwords you can actually remember!

ODAT: Oracle Database Attacking Tool

An Android Application written using latest Android Jetpack components and best practices, which displays trending movies/TV shows and cast, user can search movies and TV shows and also add them to watchlist.

macOS password generator

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

FPASS · 密码安全管理工具

☠️ The Pathwar Project ☠️

Dump ntds.dit really fast

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.

CODO运维工具支持：告警管理、告警自愈、项目管理、事件管理、加密解密、随机密码、提醒管理等

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

pentest framework

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

A password manager using https://age-encryption.org/

SSRF (Server Side Request Forgery) testing resources

This challenge is Inon Shkedy's 31 days API Security Tips.

KratosKnife is a Advanced BOTNET Written in python 3 for Windows OS. Comes With Lot of Advanced Features such as Persistence & VM Detection Methods, Built-in Binder, etc

Burp Suite extension to passively scan for applications revealing server error messages

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.

Fast Modular Web Interfaces Bruteforcer

List of default passwords for Industrial Control Systems

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Cheetah GUI

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Hooks in to interesting functions and helps reverse the web app faster.

Highly portable extremely light-weight password manager that stores all your passwords in a local encrypted file.

A fast, simple, recursive content discovery tool written in Rust.

A CHaracter Aware Splitting Method for producing password candidates.

KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Penetration tests guide based on OWASP including test cases, resources and examples.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

The ultimate WinRM shell for hacking/pentesting

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.

Awesome Node.js Security resources

An application that serves KeePass database entries on a web frontend

Snoop — инструмент разведки на основе открытых данных (OSINT world)

溯光 (TrackRay) 3 beta⚡渗透测试框架（资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap）

Browser's XSS Filter Bypass Cheat Sheet

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Pop shells like a master.

Chef repository for pentesting tools

Automatic random password generator class for PHP

A composer package to verify if a password was previously used in a breach using Have I Been Pwned API.

Working oauth2 server with minimal configuration

Fullstack authentication and accounts-management for Javascript.

Notes about attacking Jenkins servers

This repository has been archived, use the built-in password prompt in Enquirer instead.