pentest

There are 235 repositories under pentest topic.

PayloadsAllTheThings
swisskyrepo / PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pentest payload bypass web-application hacking vulnerability bounty methodology privilege-escalation penetration-testing cheatsheet security enumeration bugbounty redteam payloads hacktoberfest
Language:Python 46324
sundowndev / hacker-roadmap
A collection of hacking tools, resources and references to practice ethical hacking.
hacking hacking-tool penetration-testing roadmap frameworks hacktools pentest web-hacking exploitation post-exploitation information-gathering pentesting security
10636
social-analyzer
qeeqbox / social-analyzer
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
osint social-media analyzer username profile reconnaissance pentest information-gathering pentesting social-analyzer person-profile javascript nodejs python security-tools analysis nodejs-cli cli sosint
Language:JavaScript 9857
smicallef / spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
reconnaissance footprinting osint threatintel python infosec intelligence-gathering osint-reconnaissance attack-surface pentesting threat-intelligence security-tools information-gathering cybersecurity cti osint-framework attacksurface osint-tool pentest hacking
Language:Python 9335
nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
bug-bounty-hunters hackers xss bug-bounty learn2hack hacking pentest web-security education ssrf bugbounty
8863
vanhauser-thc / thc-hydra
hydra
penetration-testing password-cracker network-security hydra thc pentesting pentest pentest-tool brute-force brute-force-passwords bruteforce-attacks brute-force-attacks bruteforcing bruteforcer bruteforce password-cracking
Language:C 7377
SecWiki / windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
windows kernel exploit tool collections pentest
Language:C 7066
objection
sensepost / objection
📱 objection - runtime mobile exploration
mobile pentest framework ios instrumentation frida security android
Language:Python 5848
yaklang / yakit
Cyber Security ALL-IN-ONE Platform
redteam redteam-tools hacking-tools scanner burpsuite pentest golang blueteam exploit hacking security
Language:TypeScript 5033
K8tools
k8gege / K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
exploit apt 0day poc getshell pentest hacking scanner privilege-escalation bypass crack netscan brute-force password database
Language:PowerShell 5004
Detect-It-Easy
horsicq / Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
debugger detect unpacker disassembler reverse-engineering elf packer detector binary-analysis program-analysis static-analysis entropy malware-analysis malware-research macho mach-o hacktoberfest hacktoberfest2022 pentest scanner
Language:JavaScript 4815
SecWiki / linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
linux kernel exploit tool collection awesome pentest
Language:C 4759
onlurking / awesome-infosec
A curated list of awesome infosec courses and training resources.
infosec pentest courses penetration-testing security-professionals lab awesome security
4444
urbanadventurer / WhatWeb
Next generation web scanner
security web scanner ruby penetration-testing kali-linux owasp penetration-testing-tools penetration-test hacking hacking-tools network-security recon appsec application-security pentesting pentesting-tools pentest web-hacking security-tools
Language:Ruby 4406
1earn
ffffffff0x / 1earn
暂停维护 | ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
markdown-article linux-learning pentest study security collection blueteam redteam post-penetration ics-security writeup pentest-tool poc ctf security-tools infosec hacking
Language:C++ 4292
feroxbuster
epi052 / feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
web pentest pentesting-tool rust url-bruteforcer enumeration content-discovery hacktoberfest
Language:Rust 3948
reconftw
six2dez / reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
bugbounty hacking recon pentest subdomain nuclei raspberry vulnerabilities scanner fuzzing infosec osint penetration-testing pentesting reconnaissance hacktoberfest dns pentest-tool security security-tools
Language:Shell 3916
daffainfo / AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
bugbounty bugbountytips bypass payloads reconnaissance bug hacking security payload penetration-testing vulnerability infosec pentest
3902
Ladon
k8gege / Ladon
Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。10.10版本内置202个功能模块,外部模块18个,网络资产探测模块28个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息，高危漏洞检测16个包含Cisco、Zimbra、Ex
scanner portscan pentest hacking security security-tools security-scanner poc getshell brute-force password netscan tools hack exp ladon ipscanner exploit
Language:PowerShell 3750
ihebski / DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
infosec default-password pentesting bugbounty pentest credentials-gathering cheatsheet cybersecurity blueteam offensive-security exploit
Language:Python 3502
UndeadSec / SocialFish
Phishing Tool & Information Collector
phishing python pentesting undead educational pentest
Language:CSS 3351
evil-winrm
Hackplayers / evil-winrm
The ultimate WinRM shell for hacking/pentesting
winrm shell hacking pentest ruby pentesting pentesting-windows remote-management win-rm evil-winrm pass-the-hash kerberos docker psrp powershell
Language:Ruby 3295
RedTeam-Tools
A-poc / RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
cheatsheet cybersecurity hacking penetration-testing red-team security-tools linux resources tools windows enumeration payload pentest pentest-tools red-team-tools mitre-attack redteam
3279
foospidy / payloads
Git All the Payloads! A collection of web attack payloads.
payload payloads xss sqli web-attack-payloads passwords pentest hacking appsec cybersecurity
Language:Shell 3259
coreb1t / awesome-pentest-cheat-sheets
Collection of the cheat sheets useful for pentesting
cheatsheet security-cheat-sheets pentest-cheat-sheets security pentest awesome penetration-testing
3174
lanjelot / patator
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
pentest brute-force
Language:Python 3159
nixawk / pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
pentest security hacking
Language:Python 3009
mosint
alpkeskin / mosint
An automated e-mail OSINT tool
osint hacking email-checker social-media email python-hacking pwn data-breach verification-service osint-tool automation socmint information-gathering pentest go
Language:Go 2688
lcvvvv / kscan
Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。
redteam scanner bruteforce brute-force pentest exploit red-team security webscan fingerprint
Language:Go 2672
t3l3machus / Villain
Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.
open-source pentest pentesting readteaming redteam-tools redteam cybersecurity offensive-security c2 hacking hacking-tool penetration-testing penetration-testing-tools
Language:Python 2616
Ascotbe / Kernelhub
:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
exploits cve cve-2021-33739 cve-2021-26868 cve-2021-36934 cve-2021-40444 cve-2021-40449 cve-2021-42287 cve-2021-42278 cve-2021-34486 pentest kernel windows tool cve-2022-21882 cve-2022-26937 cve-2022-30206 cve-2022-33679 cve-2022-34718 linux
Language:C 2473
skerkour / black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
rust security pentest pentesting offensive-security red-team audit beacon c2 bug-bounty bug-hunting wasm shellcodes scanner phishing trojan virus hacking infosec security-tools
Language:Rust 2347
rewardone / OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
oscp reconscan pentest penetration-testing
Language:C 2244
swisskyrepo / SSRFmap
Automatic SSRF fuzzer and exploitation tool
ssrf server-side-request-forgery exploitation vulnerability ssrfmap pentest ctf hacktoberfest
Language:Python 2196
awesome-nodejs-security
lirantal / awesome-nodejs-security
Awesome Node.js Security resources
nodejs security cybersecurity web-security owasp vulnerabilities pentest infosec hacktoberfest
2173
pentest-guide
Voorivex / pentest-guide
Penetration tests guide based on OWASP including test cases, resources and examples.
pentest bugbounty owasp-tests penetration-testing vulnerability payload bypass writeup
2132

Related Topics

python pytorch java containers rust