490 Open source projects that are alternatives of or similar to Webanalyze

Relational database brute force and post exploitation tool for MySQL and MSSQL

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Monitor linux processes without root permissions

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Python 3.5+ DNS asynchronous brute force utility

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Simple Server Side Request Forgery services enumeration tool.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Web path scanner

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

无状态子域名爆破工具

Notes for taking the OSCP in 2097. Read in book form on GitBook

Powerful Visual Subdomain Enumeration at the Click of a Mouse

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Intelligence and Reconnaissance Package/Bundle installer.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Enumeration list for CakePHP 3

Next generation web scanner

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Port scanning and domain utility.

tcp connection hijacker, rust rewrite of shijack

This repo will contain some basic pentest/RT commands.

Enumerations for Ruby with some magic powers! 🎩

Automatic Enumeration Tool based in Open Source tools

A python tool to check subdomain takeover vulnerability

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Web Pentesting Fuzz 字典,一个就够了。

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Linux Rootkits (4.x Kernel)

A fully automatic wifi deauther coded in Python

PowerShell SOCKS proxy with reverse proxy capabilities

A MongoDB importer and API for Project Sonars DNS datasets

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

A pentesting tool inspired by mr robot and derived by zphisher

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Just another script for automatize boolean-based blind SQL injections. (Demo)

Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.

Everything needed for doing CTFs

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..

Quick utility to craft executables for pentesting and managing reverse shells

C++ library for semigroups and monoids

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

🦄🔒 Awesome list of secrets in environment variables 🖥️

THE ESP8266 HONEYPOT

Awesome cloud enumerator