pentesting-tool
There are 60 repositories under pentesting-tool topic.
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
pwndoc/pwndoc
Pentest Report Generator
cytopia/pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
Syslifters/sysreptor
A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.
dub-flow/sessionprobe
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
pwndoc-ng/pwndoc-ng
Pentest Report Generator
rootcathacking/catspin
Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway and deployed via AWS Cloudformation.
brows3r/iPwn
A Framework meant for the exploitation of iOS devices.
iss4cf0ng/Alien
Webshell Manager Tool/一句話木馬管理工具/Trojan/Backdoor/Pentest
swagkarna/Hande-Stealer
Powerful Discord Stealer written in python
0v3rride/Enum4LinuxPy
Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.
pentagridsec/PentagridScanController
Improve automated and semi-automated active scanning in Burp Pro
PeCoReT/pecoret
A Pentest Collaboration and Reporting Tool
cyberaz0r/badmoodle
Moodle community-based vulnerability scanner
nickvourd/Responder-Parser
Most Responder's configuration power in your hand.
unlock-security/sqlmapsh
SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration
eredotpkfr/subscan
⚡ A subdomain enumeration tool leveraging diverse techniques, designed for advanced pentesting operations
ZishanAdThandar/WriteUps
CTF and Bug Bounty Hunting WriteUps.
3skue/xAPI4
A Powerful Pentesting and Debugging Tool for Roblox
brows3r/AutoEnum
An enumeration tool for post exploitation that you can use to gather information about your target machine and its network.
pentagridsec/PentagridResponseOverview
Response Overview Extension for BurpSuite - Find exotic responses by grouping response bodies
sudobyter-hub/Pentesting0x
A premier resource for pentesting professionals and enthusiasts. Explore top-tier tutorials, tools, and guides designed to sharpen your skills and advance your cybersecurity knowledge.
pentagridsec/PentagridBurpTransportEncoding
Burp Suite extensions if you want to teach Burp a new Transport-Encoding
KristianP14/ProxyDoS
a python DoS (denial-of-service) tool that uses proxies to anonymize your attack
CoconutMacaroon/ipscan
Scan a network for IP addresses that have hostnames
rndinfosecguy/yal4ss
yet another log4shell scanner
xozxro/NotesToCommands
NotesToCommands is a powerful command template experience, allowing users to instantly execute terminal commands, with varying arguments, grouped into sections in a note or file. It was originally created for pentesting uses, to avoid the needed remembrance and retyping of sets of commands for various attacks.
0x1CA3/bind
A bind-shell written in C.
1hehaq/3PleB
Set up minimal bug bounty environment, No more bloatware.
digitaldisarray/HTTPAuthChecker
An HTTP authentication checker for testing security on web pages/routers secured with basic authentication. Made in 7th grade.
aress31/corellium-utils
A collection of utility scripts leveraging the Corellium API and designed to facilitate mobile pentesting.
c0nf1den71al/Antimatter
Report writing and vulnerability management platform.
raracraz/Privilage-Escalation-Handbook
Privilage Escalation Paths to lookout for.
txuswashere/Web-Pentesting
Web Pentesting
xzendercage/cageframework
CAGE Framwork Hacking Tools Pack – A Penetration Testing Framework
MuhammadMuazen/thagarat
Thagarat (ثغرات) which literally means (vulnerabilities) in Arabic is a simple rust automation tool for the CVE DB Shodan API