penetration-testing-tools
There are 59 repositories under penetration-testing-tools topic.
urbanadventurer / WhatWeb
Next generation web scanner
Language:Ruby 6165- Language:Go 5206
- Language:Go 4444
t3l3machus / Villain
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
Language:Python 4263kelvinBen / AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Language:Python 3461- cloudfoxLanguage:Go 2226
- reverse_ssh
NHAS / reverse_ssh
SSH based reverse shell
Language:Go 1268 - SSTImapLanguage:Python 1251
cyberark / kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
Language:Go 1206Hackmanit / Web-Cache-Vulnerability-Scanner
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
Language:Go 1025- Language:Go 1006
Fahrj / reverse-ssh
Statically-linked ssh server with reverse shell functionality for CTFs and such
Language:Go 1002Esc4iCEscEsc / skanuvaty
Dangerously fast DNS/network/port scanner
Language:Rust 922- Language:Python 826
- JustTryHarder
sinfulz / JustTryHarder
JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Language:Python 818 R0X4R / Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Language:Shell 797- pentagi
vxcontrol / pentagi
✨ Fully autonomous AI Agents system capable of performing complex penetration testing tasks
Language:Go 783 MattKeeley / Spoofy
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
Language:Python 726Cgboal / SonarSearch
A rapid API for the Project Sonar dataset
Language:Go 656- EtherGhost
Marven11 / EtherGhost
新一代Webshell管理器,兼容蚁剑与冰蝎的PHP webshell
Language:Python 655 hueristiq / xurlfind3r
A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
Language:Go 646InfosecMatter / Minimalistic-offensive-security-tools
A repository of tools for pentesting of restricted and isolated environments.
Language:PowerShell 580factionsecurity / faction
Pen Test Report Generation and Assessment Collaboration
Language:Java 572- pentest
ZishanAdThandar / pentest
Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.
Language:PHP 557 ByteSnipers / awesome-pentest-cheat-sheets
Collection of cheat sheets useful for pentesting
redeye-framework / Redeye
Redeye is a tool intended to help you manage your data during a pentest operation
Language:JavaScript 466Coalfire-Research / Slackor
A Golang implant that uses Slack as a command and control server
Language:Python 461itaymigdal / Nimbo-C2
Nimbo-C2 is yet another (simple and lightweight) C2 framework
Language:Nim 434- cervantes
CervantesSec / cervantes
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
Language:C# 422 helich0pper / Karkinos
Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
Language:PHP 413- Language:Shell 413
mhmdiaa / second-order
Second-order subdomain takeover scanner
Language:Go 408SofianeHamlaoui / Pentest-Notes
Collection of Pentest Notes and Cheatsheets
edoardottt / lit-bb-hack-tools
Little Bug Bounty & Hacking Tools⚔️
Language:Go 369PalindromeLabs / STEWS
A Security Tool for Enumerating WebSockets
Language:Python 362
