762 Open source projects that are alternatives of or similar to Webmap

Git folder digger, I'm sure it's worthwhile stuff.

Automatic Enumeration Tool based in Open Source tools

Provides various Windows Server Active Directory (AD) security-focused reports.

Turn your VPS into an attack box

Repository for threat hunting and detection queries, tools, etc.

Check linux sources dump for known CVEs.

A training curriculum for teaching information security "champions" within small organisations and helping them conduct a basic assessment. (Work in progress)

A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

A schema and set of tools for using SQL to query cloud infrastructure.

WinAppDbg Debugger

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A simple remote tool in C#.

Nmap NSE scripts

TIGMINT: OSINT (Open Source Intelligence) GUI software framework

A collection of resources I'm using while working toward the OSCP

Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations

BootStomp: a bootloader vulnerability finder

This repo will contain some basic pentest/RT commands.

adversarial examples, adversarial malware examples, adversarial malware detection, adversarial deep ensemble, Android malware variants

Octopus - Network Scan/Infos & Web Scan

💀 A bash hacking and scanning framework.

NVD/CVE as JSON files

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

Nmap Reference Guide(Nmap参考指南)

Hashes of infamous malware

Hetty is an HTTP toolkit for security research.

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

CyTrONE: Integrated Cybersecurity Training Framework

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

Easily scan files for threats to security and privacy. A Rust library and command line tool. WIP.

⚔️MITRE ATT&CK Machinations in R

All of my recommendations for aspiring engineers in a single place, coming from various areas of interest.

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

log4j2 remote code execution or IP leakage exploit (with examples)

个人教学 Wiki

Nmap Docker Image

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

A curated list of awesome infosec courses and training resources.

🖖 Fast, modern, easy-to-use network scanner

A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).

Notes Taken for HTB Machines & InfoSec Community.

A collection of all the data i could extract from 1 billion leaked credentials from internet.

JerseyCTF 2021

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

Advanced Reconnaissance tool to enumerate attacking surface of the target.

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

A template for writing a condensed course index leveraging LaTeX indexing

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

Totally Insecure Web Application Project (TIWAP)

Offensive Reverse Shell (Cheat Sheet)

Community modules for FAME

Scans an internal network using massscan and nmap

OSINT

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.