1653 Open source projects that are alternatives of or similar to Wstg

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

fully automated pentesting tool

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Best practices and ideas for Hugo the open-source static site generator.

Screwdriver.cd Documentation

Set up CUDA for machine learning (and gaming) on macOS using a NVIDIA eGPU

Scanning APK file for URIs, endpoints & secrets.

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

a list of effective go, best practices and go idiomatic

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

Hashcat web interface

The largest Node.js CLI Apps best practices list ✨

GitBook markdown content for the eBook "Pwning OWASP Juice Shop"

Collection of Facebook Bug Bounty Writeups

A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

Study materials for SE/CS technical interviews

几行代码快速集成新特性界面！

Cheatsheet for best practices of Modern C++ (taken from Effective Modern C++)

Angular to React/Redux, a Guide for Angular v1 Experts Looking to Learn React/Redux

Virgilio is developed and maintained by these awesome people. You can email us virgilio.datascience (at) gmail.com or join the Discord chat.

🔄 A collection of mitmproxy inline scripts

🎯 Server Side Template Injection Payloads

Bitcoin Programming with BitcoinJS, Bitcoin Core and LND

Android无侵入式引导提示 【博客地址：https://www.jianshu.com/p/94b73f314ab8】

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Web Application recon automation

🐍 Quick reference guide to common patterns & functions in PySpark.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS

EmbedOS - Embedded security testing virtual machine

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

WhiteWinterWolf's PHP web shell

🛁 Clean Code concepts adapted for JavaScript

A collection of various awesome lists for hackers, pentesters and security researchers

A guide to building awesome machine learning projects.

Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

Default signature for Jaeles Scanner

Time Series Forecasting Best Practices & Examples

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

unix SSH post-exploitation 1337 tool

One stop solution for all Vulkan samples

Best Practices in Core Data explained within a demo application

OWASP Cloud Security - Enabling conversations through threat and control stories

NumPy官方中文文档（完整版）

Get started fast with Node.js

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Content for hackingthe.cloud

ANDRAX The first and unique Penetration Testing platform for Android smartphones

A unified console to perform the "kill chain" stages of attacks.

Domain name permutation engine written in Go

The Hitchhiker's Guide to Compression

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

API that leverages Clair to scan Docker Registries and Kubernetes Clusters for vulnerabilities

Examples of build scripts and unit test frameworks for various languages, and how these can be used with the Jenkins continuous integration server. Contact: @mikej888

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

For all your network pentesting needs

Ransom0 is a open source ransomware made with Python, designed to find and encrypt user data.