There are 9 repositories under pentesting-tool topic.
A fast, simple, recursive content discovery tool written in Rust.
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/DOCX report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting !
Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway and deployed via AWS Cloudformation.
Powerful Discord Stealer written in python
Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.
Improve automated and semi-automated active scanning in Burp Pro
Most Responder's configuration power in your hand.
SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration
CTF and Bug Bounty Hunting WriteUps.
FUD PDF EXPLOIT SOURCE CODE, reverse shell using pdf file
Response Overview Extension for BurpSuite - Find exotic responses by grouping response bodies
A premier resource for pentesting professionals and enthusiasts. Explore top-tier tutorials, tools, and guides designed to sharpen your skills and advance your cybersecurity knowledge.
Burp Suite extensions if you want to teach Burp a new Transport-Encoding
a python DoS (denial-of-service) tool that uses proxies to anonymize your attack
Scan a network for IP addresses that have hostnames
yet another log4shell scanner
NotesToCommands is a powerful command template experience, allowing users to instantly execute terminal commands, with varying arguments, grouped into sections in a note or file. It was originally created for pentesting uses, to avoid the needed remembrance and retyping of sets of commands for various attacks.
An HTTP authentication checker for testing security on web pages/routers secured with basic authentication. Made in 7th grade.
CAGE Framwork Hacking Tools Pack – A Penetration Testing Framework
A collection of utility scripts leveraging the Corellium API and designed to facilitate mobile pentesting.
Report writing and vulnerability management platform.
Privilage Escalation Paths to lookout for.
Web Pentesting