There are 616 repositories under penetration-testing topic.
A collection of various awesome lists for hackers, pentesters and security researchers
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
A collection of hacking / penetration testing resources to make you better!
A collection of hacking tools, resources and references to practice ethical hacking.
Web path scanner
🐶 A curated list of Web Security materials and resources.
hydra
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
Infection Monkey - An open-source adversary emulation platform
A GPT-empowered penetration testing tool
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
A list of web application security
All about bug bounty (bypasses, payloads, and etc)
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Tools and Techniques for Red Team / Penetration Testing
Next generation web scanner
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Top 100 Hacking & Security E-Books (Free Download)
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
A curated list of awesome infosec courses and training resources.
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Study Notes For Web Hacking / Web安全学习笔记
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
Free Security and Hacking eBooks
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.