pentest-tool
There are 1140 repositories under pentest-tool topic.
maurosoria/dirsearch
Web path scanner
moonD4rk/HackBrowserData
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
1N3/Sn1per
Attack Surface Management Platform
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
j3ssie/osmedeus
A Workflow Engine for Offensive Security
GhostTroops/scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
ffffffff0x/1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
AzeemIdrisi/PhoneSploit-Pro
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
Pennyw0rth/NetExec
The Network Execution Tool
arismelachroinos/lscript
The LAZY script will make your life easier, and of course faster.
nicocha30/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Mr-xn/BurpSuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
S3cur3Th1sSh1t/WinPwn
Automation for internal Windows Penetrationtest / AD-Security
zhzyker/vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
itm4n/PrivescCheck
Privilege Escalation Enumeration Script for Windows
H4ckForJob/dirmap
An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。
gnebbia/kb
A minimalist command line knowledge base manager
evyatarmeged/Raccoon
A high performance offensive security tool for reconnaissance and vulnerability scanning
ph4ntonn/Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
christophetd/CloudFlair
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
thewhiteh4t/FinalRecon
All In One Web Recon
Mr-xn/RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
cujanovic/SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
TH3xACE/SUDO_KILLER
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
evilcos/xssor2
XSS'OR - Hack with JavaScript.
zhzyker/dismap
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
Dliv3/Venom
Venom - A Multi-hop Proxy for Penetration Testers
itm4n/PrintSpoofer
Abusing impersonation privileges through the "Printer Bug"
lefayjey/linWinPwn
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
ffffffff0x/f8x
红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
cytopia/pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
bitbrute/evillimiter
Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙