Awesome Open Source

Programming Languages

Search results for golang information security

information-security x

5 search results found

Ffuf ⭐ 10,658

Fast web fuzzer written in Go

Traitor ⭐ 6,329

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Hetty ⭐ 5,132

An HTTP toolkit for security research.

S3scanner ⭐ 2,297

Scan for misconfigured S3 buckets across S3-compatible APIs!

Jaeles ⭐ 1,951

The Swiss Army knife for automated Web Application Testing

Subjack ⭐ 1,665

Subdomain Takeover tool written in Go

Malice ⭐ 1,429

VirusTotal Wanna Be - Now with 100% more Hipster

Adalanche ⭐ 1,380

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

🖖 Fast, modern, easy-to-use network scanner

Cariddi ⭐ 1,228

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Metabigor ⭐ 1,087

OSINT tools and more but without API ke

Deimosc2 ⭐ 926

DeimosC2 is a Golang command and control framework for post-exploitation.

Idiomatic nmap library for go developers

Gorsair ⭐ 829

Gorsair gives root access on remote docker containers that expose their APIs

Open Source Security Guide ⭐ 795

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Wiretap ⭐ 719

Wiretap is a transparent, VPN-like proxy server that tunnels traffic via WireGuard and requires no special privileges to run.

Go Dork ⭐ 677

The fastest dork scanner written in Go.

Chashell ⭐ 599

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Apkhunt ⭐ 580

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

OSINT Swiss Army Knife

Confused ⭐ 543

Tool to check for dependency confusion vulnerabilities in multiple package management systems

Threagile ⭐ 524

Agile Threat Modeling Toolkit

Edrhunt ⭐ 475

Scan installed EDRs and AVs on Windows

Hershell ⭐ 367

Hershell is a simple TCP reverse shell written in Go.

A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.

Rescope ⭐ 298

A scope generation tool for Burp Suite & ZAP

Second Order ⭐ 295

Second-order subdomain takeover scanner

Lit Bb Hack Tools ⭐ 293

Little Bug Bounty & Hacking Tools⚔️

Awesome Job Boards ⭐ 291

A curated list of awesome jobs

Bucketloot ⭐ 252

BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.

Golang library for malware development

Yar is a tool for plunderin' organizations, users and/or repositories.

Golinkfinder ⭐ 217

A fast and minimal JS endpoint extractor

Generate tens of thousands of subdomain combinations in a matter of seconds

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

Hawkeye ⭐ 179

Hawkeye filesystem analysis tool

Filter and enrich a list of subdomains by level

Evasive shellcode loader, hooks detector and more

Favirecon ⭐ 149

Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

A tool to perform permutations, mutations and alteration of subdomains in golang.

Knockknock ⭐ 147

A simple reverse whois lookup tool which returns a list of domains owned by people or companies

Apkurlgrep ⭐ 146

Extract endpoints from APK files

Pwnshop ⭐ 144

Exploit Development, Reverse Engineering & Cryptography

Goverview ⭐ 119

goverview - Get an overview of the list of URLs

Rpcheckup ⭐ 108

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

Notionterm ⭐ 108

🖥️📖 Embed reverse shell in Notion pages

Extract pieces of info from a web page's Wayback Machine history

Goaltdns ⭐ 90

A permutation generation tool written in golang

Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leaks.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

Talosplus ⭐ 70

Talosplus is a fast and robust template based Intelligent automation framework primarily developed for Bug Bounty Automation

Proviesec Fuzz Scanner - dir/path web scanner

Pwdsafety ⭐ 61

🔒command line tool checking password safety🔒

Rfd Checker ⭐ 53

RFD Checker - security CLI tool to test Reflected File Download issues

Cdnlookup ⭐ 51

一个使用 Edns-Client-Subnet(ECS) 遍历智能CDN节点IP地址的工具

Aquatone ⭐ 48

A Tool for Domain Flyovers

Gophish Notifier ⭐ 45

Notification webhook for GoPhish

H1 Search ⭐ 45

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

Pandorasbox ⭐ 43

An intuitive and encrypted in-memory filesystem (VFS)

mxcheck is an info and security scanner for e-mail servers.

Kenyatta Ransomware ⭐ 41

This will encrypt 🤐 your files using AES-256-CTR, then RSA-4096😵‍💫to secure the exchange with the server, or can use the Tor SOCKS5 Proxy😎 -- Functionality is based on Cryptolocker😈 ransomware. Be cool😉

Sgcheckup ⭐ 40

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

🌒 Shell command obfuscation to avoid detection systems

Wordlistgen ⭐ 39

Quickly generate context-specific wordlists for content discovery from lists of URLs or paths

Distributed network and vulnerability scanner

Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs

All the members of bugbounty and infosec. If you don't know who to follow, see!

A fast enumeration tool for publicly exposed Azure Storage blobs.

Telegram_bbbot ⭐ 29

Telegram Bug Bounty Bot

Linux, FreeBSD, NetBSD, OpenBSD and Windows debugging detection library. With support for C and Go.

Git folder digger, I'm sure it's worthwhile stuff.

Reveals invisible links within JavaScript files

Infosec Alfred ⭐ 25

Scrap Latest Information Security Resources

Stinkyphish ⭐ 24

Monitor Certificate Transparency Logs For Phishing Domains

The fastest (and least featureful) DNS bruteforcer in the South

Holeysocks ⭐ 24

Cross-Platform Reverse Socks Proxy in Go

🌮 INTERACTIVE reverse shell everywhere! (Particularly digestible with socat multi-handler listener)

Hikeshi is a security incident response application that keeps documenting incidents simple, so you can focus on fighting fires.

Docker Image Generator ⭐ 20

Customized docker images generation toolkit

Gwdomains ⭐ 18

sub domain wild card filtering tool

Blazewall ⭐ 17

Open Source Single-Sign-On and Access Management platform built in microservice architecture

Ggtfobins ⭐ 17

Get GTFOBins info about a given exploit from the command line

Go package for nmap network scanning tool

Go Mispfeedgenerator ⭐ 15

Golang implementation of PyMISP-feedgenerator

Twitter Lists ⭐ 15

Auto updating archive of my Twitter lists.

Httpcustomhouse ⭐ 15

HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets

Hacker Scoper ⭐ 14

Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.

Phatcrack ⭐ 14

Modern web-based distributed hashcracking solution, built on hashcat

Searcher ⭐ 13

Run a base query (plus optional add-ons) through ask, bing, brave, duck duck go, yahoo, and yandex.

Application security made easy

Qsinject ⭐ 12

qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.

Str Replace ⭐ 11

Simple tools to handle string and generate subdomain permutations

fast, zero config web endpoint change monitor

Streamstatus ⭐ 10

Receives Twitch EventSub Webhooks and Updates the Streams Online Status

🚀 blazing-fast pentesting suite written in Go

ZIP 💣 httpd. Just a gift for scanners and bots.

Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage

Honeyshell ⭐ 7

An SSH honeypot written entirely in Go.

SMB password sprayer

Related Searches

Golang Command Line (8,308)

Golang Docker (7,036)

Golang Http (4,290)

Golang Server (4,285)

Javascript Golang (3,372)

Golang Database (2,927)

Golang Json (2,652)

Golang Proxy (2,509)

Golang Grpc (2,432)

Python Golang (2,332)

1-5 of 5 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.