344 Open source projects that are alternatives of or similar to Whitewidow

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

SQL Injection Payload List

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

hacker, ready for more of our story ! 🚀

A Binary Ninja plugin for vulnerability research.

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

Audit tool to find common vulnerabilities in PHP source code

A static binary vulnerability scanner

The Correlated CVE Vulnerability And Threat Intelligence Database API

hack tools

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Advanced vulnerability scanning with Nmap NSE

Greenbone Vulnerability Manager

The hackers tool belt

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

web scanner - exploitation - information gathering

Apache Shiro 反序列化漏洞检测与利用工具

(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Advanced Web Browser Fingerprinting

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Advanced dork Search & Mass Exploit Scanner

OWASP Joomla Vulnerability Scanner Project

Auto Scanning to SSL Vulnerability

红队综合渗透框架

Open-Source Security Architecture | 开源安全架构

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

A wiki focusing on aggregating and documenting various SQL injection methods

Proofs-of-concept

Apache Solr Injection Research

Find secrets and passwords in container images and file systems

🆕 The Multi-Tool Web Vulnerability Scanner.

A DNS rebinding attack framework.

WPScan rewritten in Python + some WPSeku ideas

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Apache Block Bad Bots, (Referer) Spam Referrer Blocker, Vulnerability Scanners, Malware, Adware, Ransomware, Malicious Sites, Wordpress Theme Detectors and Fail2Ban Jail for Repeat Offenders

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Robber is open source tool for finding executables prone to DLL hijacking

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Fast CORS misconfiguration vulnerabilities scanner🍻

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber

CVE-2020-10199、CVE-2020-10204漏洞一键检测工具，图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.

Vulnerability Dashboard

Steal Net-NTLM Hash using Bad-PDF

Burp被动扫描流量转发插件

0day安全_软件漏洞分析技术

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

ES File Explorer Open Port Vulnerability - CVE-2019-6447

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.