1327 Open source projects that are alternatives of or similar to Whour

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Advanced dork Search & Mass Exploit Scanner

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Vulners Python API wrapper

Information gathering & website reconnaissance | https://phishstats.info/

Advanced Web Browser Fingerprinting

An OSINT tool to gather information about the real owner of a phone number

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

web scanner - exploitation - information gathering

The Correlated CVE Vulnerability And Threat Intelligence Database API

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

SQL Injection Payload List

🆕 The Multi-Tool Web Vulnerability Scanner.

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

A static binary vulnerability scanner

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

SQL Vulnerability Scanner

hacker, ready for more of our story ! 🚀

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

Advanced vulnerability scanning with Nmap NSE

A collection of my quick and dirty scripts for vulnerability POC and detections

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint.

👨‍💻 A work-in-progress web services mass scanner written in Rust

This Script will help you to gather information about your victim or friend.

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

🔎 Find usernames across social networks.

Log4j Vulnerability Scanner for Windows

Remote command execution vulnerability scanner for Log4j.

🕵️‍♀️ Mondoo Cloud-Native Security & Vulnerability Risk Management

Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files

(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

(deprecated) Android application vulnerability analysis and Android pentest tool

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Web Application Security Scanner Framework

Apache Shiro 反序列化漏洞检测与利用工具

NERVE Continuous Vulnerability Scanner

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Evildork targeting your fiancee👁️

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

DNS tool - display information about your domain

Web-based Source Code Vulnerability Scanner

Information Gathering tool for a Website or IP address

Simple DNS Rebinding Service

swiss army knife for hackers

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

The hackers tool belt

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.