We have collection of more than 1 Million open source products ranging from Enterprise product to small libraries in all platforms. We aggregate information from all open source repositories. Search and find the best for your needs. Check out projects section.
Snort - Network Intrusion Prevention and Detection System
Snort is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire. Snort can perform protocol analysis and content searching/matching. It can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.
intrusion-detection intrusion-prevention network attack port-scanner packet-capturefluxion - Fluxion is a remake of linset by vk496 with less bugs and enhanced functionality.
Fluxion is a security auditing and social-engineering research tool. It is a remake of linset by vk496 with (hopefully) less bugs and more functionality. The script attempts to retrieve the WPA/WPA2 key from a target access point by means of a social engineering (phishing) attack. It's compatible with the latest release of Kali (rolling). Fluxion's attacks' setup is mostly manual, but experimental auto-mode handles some of the attacks' setup parameters. Read the FAQ before requesting issues. If you need quick help, fluxion is also avaible on gitter. You can talk with us on Gitter or on Discord.
fluxion handshake linset fakeap evil-twin captive-portal attack aircrack capture social-engineering kaliesp8266_deauther - Scan for WiFi devices, block selected connections, create dozens of networks and confuse WiFi scanners!
This software allows you to easily perform a variety of actions to test 802.11 wireless networks by using an inexpensive ESP8266 WiFi SoC (System On A Chip). The main feature, the deauthentication attack, is used to disconnect devices from their WiFi network. No one seems to care about this huge vulnerability in the official 802.11 WiFi standard, so I took action and enabled everyone who has less than 10 USD to spare to recreate this project. I hope it raises more attention on the issue. In 2009 the WiFi Alliance actually fixed the problem (see 802.11w), but only a few companies implemented it into their devices and software. To effectively prevent a deauthentication attack, both client and access point must support the 802.11w standard with protected managment frames (PMF). While most client devices seem to support it when the access point forces it, basically no WiFi access point has it enabled.
wifi arduino attack esp8266 deauth hack deauther board scanningdhcpwn - All your IPs are belong to us.
DHCPwn is a tool used for testing DHCP IP exhaustion attacks. It can also be used to sniff local DHCP traffic. The DHCP protocol is connectionless and implemented via UDP. These two characteristics allow this attack to be performed. Since there is no actual connection being made between the client and server we can quickly send many spoofed requests.
dhcp protocol udp attack bootp-protocol dhcpwnexpress-rate-limit - Basic rate-limiting middleware for express
Basic rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/or endpoints such as password reset. Note: this module does not share state with other processes/servers by default. If you need a more robust solution, I recommend using an addon store or trying out one of the excelent competing options.
express-rate-limit express rate limit ratelimit rate-limit middleware ip auth authorization security brute force bruteforce brute-force attackexpress-brute - Brute-force protection middleware for express routes by rate limiting incoming requests
A brute-force protection middleware for express routes that rate-limits incoming requests, increasing the delay with each request in a fibonacci-like sequence. An in-memory store for persisting request counts. Don't use this in production, instead choose one of the more robust store implementations listed below.
brute force bruteforce attack fibonacci rate limit securityWi-PWN - ESP8266 Deauther βwith a material design WebUI πΆ
Wi-PWN is a firmware that performs deauth attacks on cheap Arduino boards. The ESP8266 is a cheap micro controller with built-in Wi-Fi. It contains a powerful 160 MHz processor and it can be programmed using Arduino. A deauthentication attack is often confused with Wi-Fi jamming, as they both block users from accessing Wi-Fi networks.
wifi arduino attack esp8266 deauth hack probe beacon board material-design material-ui material-themeadversarial-robustness-toolbox - This is a library dedicated to adversarial machine learning
This is a library dedicated to adversarial machine learning. Its purpose is to allow rapid crafting and analysis of attacks and defense methods for machine learning models. The Adversarial Robustness Toolbox provides an implementation for many state-of-the-art methods for attacking and defending classifiers.
adversarial-examples machine-learning deep-learning deep-neural-networks defense-methods attackfusker - Fusker is a static HTTP server that provides optional security features for HTTP/Socket.io
You think you're one raw dog? fusker.nodester.com Come at me bro. Please see this for a working express example. It's as easy as app.use(fusker.express.check); Detectives/payloads are the same as they would be for the fusker HTTP server. Make sure fusker is the first piece of middleware added.
fusker hack protect csrf lfi xss sqli injection attack blacklist express socket security firewallEvilURL - Generate unicode evil domains for IDN Homograph Attack and detect them.
Generate unicode evil domains for IDN Homograph Attack and detect them.
idn attack pentest phishing idn-homograph-attackvandium-node - AWS Lambda framework for building functions using Node
AWS Lambda framework for building functions using Node.js for API Gateway, IoT applications, and other AWS events. Install via npm.
aws-lambda aws-lambda-framework jwt aws lambda framework validation wrapper api gateway sql sql-injection sqli injection attack iot serverlessbcc - An IPP tool to Man-in-the-Middle all traffic to a local printer
This is an example of a Bonjour/Zeroconf Man-in-the-Middle attack. This software showcases the attack of an IPP enabled printer. It will intercept all print jobs sent to the target printer.This attack only works for Bonjour/Zeroconf and IPP enabled printers. Only jobs sent from clients that have the printer configured using Bonjour/Zeroconf will have their jobs intercepted.
ipp print printer intercept man-in-the-middle mitm mim mitma attack dns-sd dnssd bonjour zeroconfhardhttps - Slightly hardened https for node
Make an https server that is more resistant to client-initiated renegotiations, and other common security mistakes.Not quite an A+ yet, but getting there.
https beast client renegotiation attackMitm - Man in the middle tool
This tool can be use to perform a man in the middle using ARP poisoning on two given hosts.Using osdep, a tunnel creation library which is part of the aircrack project, it can set up an interface (mitm0) in which the replayed packets will be written (to sniff easily).
security arp-poisoning replayed-packets network attack security-tools auditcredential-plus - π‘ Password hashing and verification made easy!
This package aim to provide secure, well configured and ready to use password hashing algorithms for your application.Currently the most vetted hashing algorithm providing most security is BCrypt. PBKDF2 isn't bad either, but if you can use BCrypt you should.
credential nodejs hash-functions security brute-force timing-attacks rainbow-table credential-plus password passwords hashing verification hash-function hash auth authorization authentication login sign-in salt rainbow brute attack stretching timining-attack pbkdf pbkdf2 bcrypt scrypt argon2envelope-generator - Simple ADSR envelope generator for web audio
Basic ADSR envelope generator for web audio. A demo is running here. The constructor accepts two arguments: an AudioContext and a settings object. All settings are optional, but you will probably want to set at least attackTime, decayTime, sustainLevel, and releaseTime.
web-audio envelope envelope-generator adsr attack decay sustain releaseadsr - UNMAINTAINED: Attack, decay, sustain, release envelope for automating Web Audio API AudioParams
Attack, decay, sustain, release envelope for automating Web Audio API AudioParams. Returns an ADSR ModulatorNode instance.
adsr envelope attack sustain decay release waapi audioparam modulatorddos-stress - nodejs ddos stress app
Do not use this module ta attack servers and services you don't own! It is only for testing purposes and not for unauthorized actions.
stress tool ddos attackupash - π Unified APIs for Password Hashing Algorithms
π Unified APIs for Password Hashing Algorithms Coded with β€οΈ by Simone Primarosa. The upash (pronounced u-pash) project provides you a Unified API to implement secured and well-configured password hashing algorithms inside your application.
credential nodejs hash-functions security brute-force timing-attacks rainbow-table bcrypt pbkdf2 argon verification credentials password upash unified api universal cli secure hashing account accounts algorithm algorithms apis application argon2 attack attacks auth authentication authorization brute command cryptographically derivation easy force form function hash interface irreversible kdf key line login one one-way passwords pbkdf pbkdf1 pbkdf2-crypt plus programming protected rainbow resistance salt scrypt sign-in simple store stretching strong table time timining transform user users verify way
We have large collection of open source products. Follow the tags from
Tag Cloud >>
Open source products are scattered around the web. Please provide information
about the open source projects you own / you use.
Add Projects.
