pentesting-tool

There are 83 repositories under pentesting-tool topic.

  • feroxbuster

    epi052/feroxbuster

    A fast, simple, recursive content discovery tool written in Rust.

    Language:Rust7k57304554

  • pwndoc/pwndoc

    Pentest Report Generator

    Language:JavaScript2.6k46336477
  • sysreptor

    Syslifters/sysreptor

    A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

    Language:Python2.1k19342221

  • cytopia/pwncat

    pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

    Language:Shell1.9k3848216

  • d1rkmtrr/FilelessPELoader

    Loading Remote AES Encrypted PE in memory , Decrypted it and run it

    Language:C++977147200

  • dub-flow/sessionprobe

    SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.

    Language:Go4608138

  • pwndoc-ng/pwndoc-ng

    Pentest Report Generator

    Language:JavaScript427911691
  • catspin

    rootcathacking/catspin

    Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway and deployed via AWS Cloudformation.

    Language:Shell2644132

  • brows3r/iPwn

    A Framework meant for the exploitation of iOS devices.

    Language:Python2173431

  • iss4cf0ng/Alien

    Webshell Manager Tool/一句話木馬管理工具/Trojan/Backdoor/Pentest

    1065210

  • 0v3rride/Enum4LinuxPy

    Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.

    Language:Python852310

  • pentagridsec/PentagridScanController

    Improve automated and semi-automated active scanning in Burp Pro

    Language:Kotlin62463

  • cyberaz0r/badmoodle

    Moodle community-based vulnerability scanner

    Language:Python51145

  • nickvourd/Responder-Parser

    Most Responder's configuration power in your hand.

    Language:Python51219

  • eredotpkfr/subscan

    ⚡ A subdomain enumeration tool leveraging diverse techniques, designed for advanced pentesting operations

    Language:Rust471661
  • sqlmapsh

    unlock-security/sqlmapsh

    SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration

    Language:Go42108
  • xAPI4

    3skue/xAPI4

    A Powerful Pentesting and Debugging Tool for Roblox

    23212
  • WriteUps

    ZishanAdThandar/WriteUps

    CTF and Bug Bounty Hunting WriteUps.

    Language:HTML20103

  • pentagridsec/PentagridResponseOverview

    Response Overview Extension for BurpSuite - Find exotic responses by grouping response bodies

    Language:Kotlin11306

  • brows3r/AutoEnum

    An enumeration tool for post exploitation that you can use to gather information about your target machine and its network.

    Language:C10104

  • sudobyter-hub/Pentesting0x

    A premier resource for pentesting professionals and enthusiasts. Explore top-tier tutorials, tools, and guides designed to sharpen your skills and advance your cybersecurity knowledge.

    10100

  • franckferman/SYSTEMatic

    👻 Systematically Seizing SYSTEM Rights — Alternative to PSExec for SYSTEM privilege escalation through token theft.

    Language:C8100
  • LinFo

    kaotickj/LinFo

    LinFo is a lightweight Linux system information and security enumeration tool designed for quick, comprehensive insights into a target system’s hardware, software, and security posture.

    Language:Shell8102

  • pentagridsec/PentagridBurpTransportEncoding

    Burp Suite extensions if you want to teach Burp a new Transport-Encoding

    Language:Python8203

  • 1hehaq/3PleB

    Set up minimal bug bounty environment, No more bloatware.

    Language:Shell7104

  • livepwn/liveexploit

    Live Exploit is a powerful and versatile Python-based tool designed for Capture The Flag (CTF) challenges, exploit development, and vulnerability research.

    Language:Python7

  • CoconutMacaroon/ipscan

    Scan a network for IP addresses that have hostnames

    Language:Python6102

  • digitaldisarray/HTTPAuthChecker

    An HTTP authentication checker for testing security on web pages/routers secured with basic authentication. Made in 7th grade.

    Language:Java600

  • KristianP14/ProxyDoS

    a python DoS (denial-of-service) tool that uses proxies to anonymize your attack

    Language:Python6101

  • rndinfosecguy/yal4ss

    yet another log4shell scanner

    Language:Python6100

  • xozxro/NotesToCommands

    NotesToCommands is a powerful command template experience, allowing users to instantly execute terminal commands, with varying arguments, grouped into sections in a note or file. It was originally created for pentesting uses, to avoid the needed remembrance and retyping of sets of commands for various attacks.

    Language:Python6100

  • 0x1CA3/bind

    A bind-shell written in C.

    Language:C5102

  • MuhammadMuazen/thagarat

    Thagarat (ثغرات) which literally means (vulnerabilities) in Arabic is a simple rust automation tool for the CVE DB Shodan API

    Language:Rust5100

  • txuswashere/Web-Pentesting

    Web Pentesting

    5201
  • cageframework

    xzendercage/cageframework

    CAGE Framwork Hacking Tools Pack – A Penetration Testing Framework

    Language:Python5100

  • aress31/corellium-utils

    A collection of utility scripts leveraging the Corellium API and designed to facilitate mobile pentesting.

    Language:JavaScript420