1310 Open source projects that are alternatives of or similar to Xunfeng

🐞 Primitive Erlang Security Tool

Hawkeye filesystem analysis tool

Botnet targeting Windows machines written entirely in Python & open source security project.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

Windows one line commands that make life easier, shortcuts and command line fu.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Cameradar hacks its way into RTSP videosurveillance cameras

Selenium powered Python script to automate searching for vulnerable web apps.

A Blazing fast Security Auditing tool for Kubernetes

🖖 Fast, modern, easy-to-use network scanner

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.

Scanner, signatures and the largest collection of Magento malware

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Static and dynamic Android application security analysis

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

Pentest: Subdomains enumeration tool for penetration testers.

Scout - a Contactless Active Reconnaissance Tool

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Advanced dork Search & Mass Exploit Scanner

pentest framework

Fast and customizable vulnerability scanner For JIRA written in Python

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

Biu-framework🚀 Security Scan Framework For Enterprise Intranet Based Services(企业内网基础服务安全扫描框架)

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Check CPAN modules for known security vulnerabilities

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Network Vulnerability Scanner

A static binary vulnerability scanner

Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types

Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Open-Source Security Architecture | 开源安全架构

Sifter aims to be a fully loaded Op Centre for Pentesters

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Intelligence tool but without API key

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Idiomatic nmap library for go developers

Gorsair hacks its way into remote docker containers that expose their APIs

Hacking Toolkit

Agent scanner for vulners.com

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

A collection of my quick and dirty scripts for vulnerability POC and detections

《白帽子讲Web扫描》书籍参考代码

Micro-framework for rapid development of reusable security tools

DNS Sub-domain brute forcer, in Python + gevent

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

RFMap - Radio Frequency Mapper

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Misc. Public Reports of Penetration Testing and Security Audits.

python3批量poc检测工具

DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨