There are 544 repositories under pentesting topic.
Automatic SQL injection and database takeover tool
A collection of hacking tools, resources and references to practice ethical hacking.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Web path scanner
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
hydra
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A swiss army knife for pentesting networks
Web Pentesting Fuzz 字典,一个就够了。
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
This is a multi-use bash script for Linux systems to audit wireless networks.
A list of web application security
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Next generation web scanner
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Reverse engineering and pentesting for Android applications
RogueMaster Flipper Zero Firmware
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Monitor linux processes without root permissions