966 Open source projects that are alternatives of or similar to Wordlists

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

🎯 XML External Entity (XXE) Injection Payload List

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

all manner of wordlists

A tool to hunt for publicly accessible DigitalOcean Spaces

🖖 Fast, modern, easy-to-use network scanner

A container repository for my public web hacks!

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

A support library for Ronin. Like activesupport, but for hacking!

goverview - Get an overview of the list of URLs

Extract subdomains from SSL certificates in HTTPS sites.

Web path scanner

An advanced tool for email reconnaissance

Backend logic implementation for Vulnerability Management System

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

E-mails, subdomains and names Harvester - OSINT

📚 An ultimate collection wordlists of the best-known CMS

A permutation generation tool written in golang

渗透测试人员专用精简化字典 Dictionary for penetration testers happy hacker

OSINT Project

Pentest: Subdomains enumeration tool for penetration testers.

Related subdomains finder

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Links for the OSINT Team

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A list of interesting payloads, tips and tricks for bug bounty hunters.

List of Awesome Asset Discovery Resources

WinAppDbg Debugger

Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Collection of LLVM passes and triage tools for use with the KRF fuzzer

Port scanning and domain utility.

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

Simple interface to libmagic for Ruby Programming Language

Fuzzing cryptographic libraries. Magic bug printer go brrrr.

Not only English-Chinese translator for Emacs.

No description or website provided.

Software Papers as Software Modules: Towards a Culture of Reusable Results

Polish dictionary for JetBrains' IDEs

Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.

Wifi Bruteforce (WiBr) is a wifi cracking tool written in c#.

List of my talks and workshops: security engineering, applied cryptography, secure software development

Extract server and IP address information from Browser SSRF

Interactive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack

A Rails engine supporting discovery of archival material

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Get actually nice HTML coverage overview on libfuzzer runs

Fuzzing Browsers

Java Library for Distributed Services

An Artificial Intelligence Chat Bot and Service Provider written in Python and AIML.

Encapsulates the official Jisho.org API and also provides kanji, example, and stroke diagram search.

A few SQL and XSS attack tools

My dictionary for simplicity, intelligence, and beauty.

📙 A Ruby wrapper for the Oxford Dictionary API