pentesting

There are 435 repositories under pentesting topic.

sqlmapproject / sqlmap
Automatic SQL injection and database takeover tool
sql-injection detection exploitation takeover python database pentesting vulnerability-scanner sqlmap
Language:Python 26543
Ciphey / Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
artificial-intelligence cipher cpp cryptography ctf ctf-tools cyberchef-magic decryption deep-neural-network encodings encryptions hacking hacktoberfest hashes natural-language-processing pentesting python
Language:Python 12702
sundowndev / hacker-roadmap
A collection of hacking tools, resources and references to practice ethical hacking.
hacking hacking-tool penetration-testing roadmap frameworks hacktools pentest web-hacking exploitation post-exploitation information-gathering pentesting security
10659
OWASP / owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
android android-application compliancy-checklist dynamic-analysis hacking ios ios-app mast mastg mobile-app mobile-security mstg network-analysis pentesting reverse-engineering reverse-enginnering runtime-analysis static-analysis testing-cryptography
Language:Python 10078
social-analyzer
qeeqbox / social-analyzer
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
osint social-media analyzer username profile reconnaissance pentest information-gathering pentesting social-analyzer person-profile javascript nodejs python security-tools analysis nodejs-cli cli sosint
Language:JavaScript 9876
RustScan
RustScan / RustScan
🤖 The Modern Port Scanner 🤖
security pentesting hacking port scanning networking security-tools nmap rust docker hacktoberfest
Language:Rust 9562
maurosoria / dirsearch
Web path scanner
fuzzer fuzzing python security dirsearch hacking pentesting penetration-testing bug-bounty appsec wordlist hacking-tool infosec brute scanner bugbounty enumeration pentest-tool red-teaming redteam
Language:Python 9433
smicallef / spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
reconnaissance footprinting osint threatintel python infosec intelligence-gathering osint-reconnaissance attack-surface pentesting threat-intelligence security-tools information-gathering cybersecurity cti osint-framework attacksurface osint-tool pentest hacking
Language:Python 9369
ffuf / ffuf
Fast web fuzzer written in Go
fuzzer pentesting infosec web
Language:Go 9011
juice-shop
juice-shop / juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
24pullrequests application-security appsec ctf hacking hacktoberfest javascript owasp owasp-top-10 owasp-top-ten pentesting security vulnapp vulnerable
Language:TypeScript 7894
n1nj4sec / pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
android backdoor linux mac-os meterpreter payload pentesting post-exploitation pupy python rat reflective-injection remote-access remote-admin-tool reverse-shell shell windows
Language:Python 7557
vanhauser-thc / thc-hydra
hydra
brute-force brute-force-attacks brute-force-passwords bruteforce bruteforce-attacks bruteforcer bruteforcing hydra network-security password-cracker password-cracking penetration-testing pentest pentest-tool pentesting thc
Language:C 7401
OJ / gobuster
Directory/File, DNS and VHost busting tool written in Go
go pentesting tool dns web
Language:Go 7398
infosecn1nja / Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
red-team hacking infosec pentesting
7359
CrackMapExec
Porchetta-Industries / CrackMapExec
A swiss army knife for pentesting networks
python active-directory pentesting windows powershell networks
Language:Python 7059
Sn1per
1N3 / Sn1per
Attack Surface Management Platform | Sn1perSecurity LLC
sn1per sn1per-professional bugbounty-platform attack-surface cybersecurity pentest-tool pentesting-tools pentest-scripts pentest-tools hacking-tools osint-tool osint-framework attacksurface penetration-testing pentesting security-tools attack-surface-management hacking security
Language:Shell 6249
carlospolop / hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
hacktricks pentesting hacking peass
Language:Python 6195
TheKingOfDuck / fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
fuzzing fuzz-testing pentesting username password directory paramter wfuzz fuzzer
Language:Python 5726
wstg
OWASP / wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
best-practices guide owasp bugbounty penetration-testing pentesting application-security security hacktoberfest
Language:Dockerfile 5425
rengine
yogeshojha / rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
security-tools osint recon recon-engine reconnaissance scanner scanner-web rengine information-gathering bugbounty hacking scanning pentesting bug-bounty infosec penetration-testing
Language:JavaScript 5230
hetty
dstotijn / hetty
An HTTP toolkit for security research.
mitm proxy http pentesting infosec bugbounty
Language:Go 5166
rmusser01 / Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
infosec infosec-reference reverse-engineering hacking pentesting penetration-testing references linux privilege-escalation information-security blueteam red-team windows osx forensics hacking-simulator privilege-escalation-exploits hacktoberfest hacktoberfest2021
Language:CSS 4889
airgeddon
v1s1t0r1sh3r3 / airgeddon
This is a multi-use bash script for Linux systems to audit wireless networks.
evil-twin wps security beef sslstrip bash sniffing wireless aircrack handshake linux hacking pentesting pixie-dust wep denial-of-service 5ghz enterprise pmkid wpa-wpa2-wpa3
Language:Shell 4871
infoslack / awesome-web-hacking
A list of web application security
penetration-testing web-hacking vulnerabilities scanner hacking hacking-tools metasploit web-security appsec owasp pentesting security vulnerability
4631
Hack-Tools
LasCC / Hack-Tools
The all-in-one Red Team extension for Web Pentester 🛠
pentesting red-team red-teaming pentest-tool cybersecurity reverse-shell hacking hack-tools chrome-extension firefox-addon hacking-tools hacktools payloads xss-payloads web-pentesters hack msfvenom metasploit hackbar
Language:TypeScript 4464
urbanadventurer / WhatWeb
Next generation web scanner
security web scanner ruby penetration-testing kali-linux owasp penetration-testing-tools penetration-test hacking hacking-tools network-security recon appsec application-security pentesting pentesting-tools pentest web-hacking security-tools
Language:Ruby 4418
j3ssie / osmedeus
A Workflow Engine for Offensive Security
scanning reconnaissance penetration-testing security-tools pentest-tool hacking-tool information-gathering hacking osint osmedeus bugbounty pentesting golang security go bug-bounty
Language:Go 4353
androguard / androguard
Reverse engineering and pentesting for Android applications
android dalvik dex odex pentesting reverse-engineering
Language:Python 4344
Cheatsheet-God
OlivierLaflamme / Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
penetration-testing security hacking cheatsheet oscp information-security pentesting howto-tutorial refresher penetration-test cheatsheet-god oscp5 oscp-tools oscp-journey penetration security-tools security-vulnerability hacking-tool hacking-code awesome
4234
trickest / cve
Gather and update all available and newest CVEs with their PoC.
poc cve cve-poc latest-cve vulnerability vulnerabilities software-vulnerabilities software-security exploit security infosec hacking pentesting penetration-testing red-team security-tools software-vulnerability
Language:HTML 4144
awesome-shodan-queries
jakejarvis / awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻
shodan infosec pentesting iot internet-of-things security awesome awesome-list hacking penetration-testing shodan-dorks dorks network-infrastructure security-tools security-scanner cloud
3993
reconftw
six2dez / reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
bugbounty hacking recon pentest subdomain nuclei raspberry vulnerabilities scanner fuzzing infosec osint penetration-testing pentesting reconnaissance hacktoberfest dns pentest-tool security security-tools
Language:Shell 3927
tanprathan / MobileApp-Pentest-Cheatsheet
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
mobile-app pentesting android-application ios-app runtime-analysis network-analysis static-analysis reverse-engineers dynamic-analysis
3922
S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
activedirectory active-directory cheatsheet active-directory-cheatsheet active-directory-exploitation security pentesting penetration-testing hacking hacking-cheasheet hacking-tools hacking-tool cheat cheat-sheet exploitation privilege-escalation enumeration attack windows-active-directory windows
3853
infobyte / faraday
Open Source Vulnerability Management Platform
devops penetration-testing vulnerability vulnerability-scanners security security-audit pentesting continuous-scanning infosec vulnerability-management collaboration burpsuite nessus nmap devsecops security-automation orchestration cve appsec cybersecurity
Language:Python 3852
commix
commixproject / commix
Automated All-in-One OS Command Injection Exploitation Tool.
python command-injection detection exploitation pentesting vulnerability-scanner bugbounty opensource takeover
Language:Python 3728

Related Topics

javascript swift react-native game docker-image