550 Open source projects that are alternatives of or similar to Zigdiggity

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

The request.bin of DNS request

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

A binary analysis framework

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

DNS-Discovery is a multithreaded subdomain bruteforcer.

Collection of PowerShell network security scripts for system administrators.

An application to assist in the organization and prioritization of software security activities.

Tool made to automate tasks of pentesting.

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Relational database brute force and post exploitation tool for MySQL and MSSQL

A CLI tool for automating the importing, securing and usage of NordVPN (and in the future, more) OpenVPN servers through NetworkManager.

SMB Relay Attack Script

Work in progress firewall for Linux syscalls, written in Rust

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

🔄 A collection of mitmproxy inline scripts

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Domain name permutation engine written in Go

A PowerShell armoury for penetration testers or other random security guys

Webshell Manager

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Hunt down the secrets from the WebArchives for Fun and Profit

Resources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.

unix SSH post-exploitation 1337 tool

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Username enumeration and password spraying tool aimed at Microsoft O365.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Collecting & Hunting for IOCs with gusto and style

Common password pattern generator using strings list

A wrapper for Nmap to quickly run network scans

A collection of public offensive and defensive security related scripts for InfoSec students.

Tool for viewing and analyzing execution traces

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Tool Information Gathering & social engineering Write By [Python,JS,PHP]

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Awesome Golang Security resources 🕶🔐

Adversary Simulation Framework

Telling tales on you for leaking secrets!

Hyuga 一个用来记录DNS查询和HTTP请求的监控工具。

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

VOIP Security Audit Framework

🔐 Open Source Python Keylogger Collection

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

A Go implementation of dirsearch.

NebulousAD automated credential auditing tool.

Custom memory allocator that helps discover reads from uninitialized memory

Penetration test Achieve Knowledge Unite Rapid Interface

A security monitoring solution for Kubernetes

A curated list of various bug bounty tools

一个用于识别目标网站是否采用Struts2框架开发的工具demo

Powershell script to setup windows port forwarding using native netsh client

Android Mobile Device Hardening

OSS Vulnerability Scanner for Windows Platform

A note-taking macOS app for penetration-testers.

A fast web directory/file enumeration tool written in Rust