Top Alternatives to Weakpass
Vulnerability ManagementLooking for alternatives to Weakpass? A comprehensive collection of wordlists for bruteforcing and password cracking, covering various hashing algorithms and sizes. Browse 19 similar Vulnerability Management tools below, compare features side-by-side, and find the best fit for your security stack.
19 Alternatives to Weakpass
SecLists is a comprehensive repository of security testing lists including usernames, passwords, URLs, fuzzing payloads, and web shells used during penetration testing and security assessments.
A fast web crawler for discovering endpoints and assets within web applications during security reconnaissance.
A Python tool that mines URLs from web archives to assist security researchers in discovering potential attack surfaces for bug hunting and vulnerability assessment.
A login cracker that can be used to crack many types of authentication protocols.
A web-based payload repository that generates ready-to-use exploits for pentesting
Hashcat is a fast and advanced password recovery utility that supports various attack modes and hashing algorithms, and is open-source and community-driven.
A suite of tools for Wi-Fi network security assessment and penetration testing.
A toolkit to attack Office365, including tools for password spraying, password cracking, token manipulation, and exploiting vulnerabilities in Office365 APIs and services.
A bash-based framework for discovering and extracting exposed .git repositories from web servers during penetration testing and bug bounty activities.
A fast and flexible HTTP enumerator for content discovery and credential bruteforcing
An image with commonly used tools for creating a pentest environment easily and quickly, with detailed instructions for launching in a VPS.
Sublist3r is a python tool for enumerating subdomains using OSINT and various search engines.
A modular and script-friendly multithread bruteforcer for managing task parameters in Python scripts.
Ophcrack is a free Windows password cracker based on rainbow tables with various features for password recovery.
Wfuzz is a tool designed for bruteforcing Web Applications with multiple features like multiple injection points, recursion, and payload combinations.
A brute force parameter discovery tool for identifying hidden GET and POST parameters in web applications during security assessments.
A wordlist to bruteforce for Local File Inclusion (LFI) vulnerabilities
ezXSS is a testing framework that helps penetration testers and bug bounty hunters identify Cross Site Scripting vulnerabilities, especially blind XSS attacks.
