Alternatives and similar repositories for OSTIF

Users that are interested in OSTIF are comparing it to the libraries listed below

• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆23Updated last year
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆32Updated 3 years ago
• xlab-si / iac-scan-runner
  Service that scans your Infrastructure as Code for common vulnerabilities
  ☆49Updated last year
• rootcathacking / cloudcat
  aws cli pentesting/red team snippets
  ☆32Updated last year
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆94Updated 2 years ago
• codingo / simple
  A collection of one off hacks and simple scripts
  ☆28Updated 2 years ago
• Macmod / STARS
  A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …
  ☆50Updated 2 years ago
• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆66Updated 3 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆33Updated 3 years ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆29Updated 7 months ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 3 years ago
• adityaks / melee
  Melee: Tool to Detect Infections in MySQL Instances
  ☆22Updated 2 years ago
• sec-it / pass-station
  CLI & library to search for default credentials among thousands of Products / Vendors
  ☆68Updated 4 years ago
• Zigrin-Security / CakeFuzzer
  Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …
  ☆104Updated 3 months ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆21Updated 4 months ago
• yeswehack / myopenvdp
  MyOpenVDP is a free web application to install a vulnerability disclosure policy or a vulnerability disclosure program on your assets. (V…
  ☆31Updated last year
• zruvv / OffensiveSecurity
  Penetration Testing & Red Team tools & scripts
  ☆12Updated 2 years ago
• passkwall / nmap-to-neo4j
  Script for importing Nmap results into a Neo4j Graph Database
  ☆23Updated 6 months ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• yousseflahouifi / moniorg
  moniorg is a tool that leverages crt.sh website to monitor domains of a target
  ☆47Updated 2 years ago
• FA-PengFei / NGWAF
  First iteration of ML based Feedback WAF
  ☆59Updated last year
• Antonlovesdnb / DockerDetectionNotes
  Some of my rough notes for Docker threat detection
  ☆48Updated 2 years ago
• binareio / FastCVE
  FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.
  ☆56Updated 5 months ago
• telekom-security / cve-2023-3519-citrix-scanner
  Citrix Scanner for CVE-2023-3519
  ☆51Updated 2 years ago
• devanshbatham / ip2cloud
  Check IP addresses against known cloud provider IP address ranges
  ☆46Updated 2 years ago
• Rnalter / ThunderCloud
  Cloud Exploit Framework
  ☆114Updated 3 years ago
• trickest / github-logs
  Extracting OSINT Insights from 15TB of GitHub Event Logs
  ☆68Updated 2 years ago
• geeknik / test-proxy
  Advanced test for proxy & waf
  ☆13Updated last month