344 Open source projects that are alternatives of or similar to Whitewidow

🔎 Python framework to automatically discover and enumerate hosts from different back-end systems (Shodan, Censys)

Linux post exploitation privilege escalation enumeration

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Shodanwave is a tool for exploring and obtaining information from Netwave IP Camera.

Advanced and easy to use penetration testing framework 💣🔎

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Turn your Burp suite into headless active web application vulnerability scanner

OSS Vulnerability Scanner for Windows Platform

SD-WAN security and insecurity

Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.

A curated list of vulnerable web applications.

PHP malware detector

XSSCon: Simple XSS Scanner tool

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Python2编写的struts2漏洞全版本检测和利用工具

Python3编写的CMS漏洞检测框架

All-in-one tool for managing vulnerability reports from AppSec pipelines

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Discover Your Attack Surface!

A tool for scanning registery key permissions. Find where non-admins can create symbolic links.

Automated Penetration Testing Framework

Safety checks your installed dependencies for known security vulnerabilities

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

Git All the Payloads! A collection of web attack payloads.

Have fun injecting SQL into a Ruby on Rails application!

A list of useful payloads for Web Application Security and Pentest/CTF

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

Offensive tools as Dockerfiles. Lightweight & Ready to go

Complete PHP-based Login/Registration system, Profile system, Chat room, Forum system and Blog/Polls/Event Management System.

Albatar is a SQLi exploitation framework in Python

Hacking tools

xWAF 3.0 - Free Web Application Firewall, Open-Source.

Java web common vulnerabilities and security code which is base on springboot and spring security

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

massive SQL injection vulnerability scanner

Security scanner for your Terraform code

Source code for Hacker101.com - a free online web and mobile security class.

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list