vapt

There are 1 repository under vapt topic.

• jadx-ai-mcp

  zinja-coder / jadx-ai-mcp

  Plugin for JADX to integrate MCP server

  aijavallmmcpmcp-servermcp-serversmobilemodel-context-protocolmodel-context-protocol-serverspentestingreverse-engineeringsastvapt
  Language:Java 621

• SaumyajeetDas / GodGenesis

  A Python3 based C2 server to make life of red teamer a bit easier. The payload is capable to bypass all the known antiviruses and endpoints.

  antivirus-evasionc2serverexploitfudhackingmalwarepenetration-testingpython3redteamvapt
  Language:Python 528

• dev-angelist / eJPTv2-Notes

  eLearnSecurity Junior Penetration Tester (eJPT) v2 Notes

  cybersecurityejptejpt-cheatsheetejpt-notesejpt-studyejptv2hydrametasploitnmappenetration-tester-juniorpenetration-testingpentesterpivotingsql-injectionvaptxss
  249
• apktool-mcp-server

  zinja-coder / apktool-mcp-server

  A MCP Server for APK Tool (Part of Android Reverse Engineering MCP Suites)

  aiandroidapktoolllmmcpmcp-servermobilereverse-engineeringvapt
  Language:Python 248
• jadx-mcp-server

  zinja-coder / jadx-mcp-server

  MCP server for JADX-AI Plugin

  aiandroid-hackingandroid-reverse-engineeringapplication-securityllmmcpmcp-servermcp-serversmobile-securitymodel-context-protocolmodel-context-protocol-serverpythonreverse-engineeringvapt
  Language:Python 206
• zin-mcp-client

  zinja-coder / zin-mcp-client

  MCP Client which serves as bridge between mcp servers and local LLMs running on Ollama, Created for MCP Servers Developed by Me, However other MCP Servers may run as well

  aicli-appcybersecurity-toolsethical-hacking-toolsfastmcpllmmcpmcp-clientmodel-context-protocolmodel-context-protocol-clientpythonrich-consolevapt
  Language:Python 95

• sudosuraj / Awesome-Bug-Bounty

  This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer while hunting. It is still under development, so feel free to contribute.

  bugbountybug-bountysudosurajbugbounty-toolbugbountytipsecorpsecurityecorpmobile-securitypentestingvaptwebsecurityhelping-hackers
  Language:PHP 60

• tsumarios / Kali-Linux-Dockerfile

  A simple Dockerfile to build an image starting from the latest official one of Kali Linux and including some useful tools.

  dockerdockerfilekali-linuxmetasploitzshnetworkingpentestingpythonnodejsnetcatexploitethical-hackinggolangtorproxychainsreverse-engineeringapktoolvapt
  Language:Shell 40

• darklotuskdb / ios-buster

  The iOS Buster is a groundbreaking penetration testing tool for iOS, capable of performing both static and dynamic testing. It provides detailed reports, including STR, highlighting discovered vulnerabilities. It serves as a valuable addition to MobSF.

  hacking-tooliosiospentestingipadiphonejailbreakmobilesecurityscannersecurity-toolsvaptiosbuster
  25

• R3DRUN3 / cyberhall

  🛡️ 🌐 🥷🏻 Everything CyberSecurity Related 🏴‍☠️ 👾 🕵🏾

  ctfcvecybersecuritydevsecopshackinginfosecsecopsvapt
  Language:Python 25

• progprnv / scope

  SCOPE [Shadow Cache Observation, Poisoning & Evaluation] is a powerful tool designed to help you find and test vulnerabilities in subdomains that might be exposed to cache poisoning attacks. If a website isn't properly handling cache, it could lead to security issues where malicious content gets stored and served to users.

  automationbugbountybugbounty-toolcybersecurityethical-hackingpenetration-testingpenetration-testing-toolspentestpentestingscannervaptvulnerability-detectionvulnerability-scannerscache-scanner
  Language:Python 13

• h0tPlug1n / Web-Penetration-Testing-Report-Sample

  This is Web Application Penetration Testing Report made for everybody who wanted a glance of how to make a professional report for pentetring purpose. The penetration testing has been done in a sample testable website.

  webpenetration-testinghackingvaptvulnerabilitycybersecurityredteam
  12
• Auto-Payload-Positioner

  netsquare / Auto-Payload-Positioner

  BurpSuite Extension leveraging new Montoya API to automatically sets payload positions to your inruder tab saving you time during VAPT.

  automationburpsuiteburpsuite-extensionintrudermontoya-apivaptweb
  Language:Java 10

• jinsonvarghese / Cybersecurity

  All things Cybersecurity!

  cybersecurityinformationsecurityvaptinformation-securityvulnerability-assessmentpenetration-testinginfosecmalware-removal
  Language:Shell 7

• Cybervie007 / Cybervie007

  CyberSecurity Interview Questions

  cybersecuritycybersecurity-projectscybersecurity-traininginformation-securityinterview-questionsjobspentesting-toolsvapt
  6

• progprnv / Secure-KTU-Project_Davinci

  Project Davinci, led by Government Engineering College (GEC) Thrissur, focuses on "Secure-KTU," enhancing the security of the KTU website. The project assesses vulnerabilities per NCIIPC RVDP standards, addressing threats like data breaches and unauthorized access, ensuring safer online services.

  cybersecuritypenetration-testingvaptvulnerability-assessment
  6

• 4lch3mis7 / xml-hydra

  XML-Hydra is a tool to bruteforce user passwords via public facing XML-RPC interface in a Wordpress application.

  amplificationbruteforcebugbountygolangpasswordpassword-attackpentesting-toolsvaptwordpressxml-rpc
  Language:Go 4

• Faizan-Khanx / PYTHA-SHELL

  PYTHA-SHELL is an educational cybersecurity tool featuring an RCE mode. It offers practical examples and demonstrations to help students understand various attacks and vulnerabilities in a controlled environment. PYTHA-SHELL provides hands-on experience with real-world security risks making it a valuable resource for learning and teaching

  backdoorbackdoor-attackspythonpythonshellreverse-shellshellshell-scriptcybersecurityeducationhackingtoolssecuritytrainingvaptremotecodeexecutionvulnerability-assessmentcybersecurityhacking-tool
  4

• hisrarul / history

  History of tasks related to DevOps, Cloud and Security.

  dockerkubernetesawsansibledevopsvaptvelerojenkins
  Language:Jupyter Notebook 4

• pentesterhelper / Postman-Api-Count

  Postman-API-Count is a tool that simplifies the extraction and analysis of APIs from Postman collections. It allows users to extract APIs based on specific HTTP methods, identify APIs without any defined methods, and retrieve the total count of APIs in a collection. This tool is beneficial for developers and testers working with Postman collections

  apiapitestingpostmanpostman-apivapt
  Language:Python 4

• Cappricio-Securities / openredirect

  This is a tool used by several security researchers to find Open Redirect Bug

  bugbountybugbounty-toolbugbounty-toolsopen-redirectopen-redirect-detectionopenredirectvaptpentestingwapt
  Language:Python 3

• CipherXAbhi / MASTG

  A curated resource for mobile security testing based on OWASP MASTG. Includes notes, tools, and practical examples for pentesters and developers.

  application-securitycybersecurityguidemobilemobile-appmobile-penetration-testingmobile-pentestmobile-pentest-toolkitmobile-pentestingmobile-testingmptowaspowasp-top-10securitysecurity-testingvaptmobile-pentesting-guide
  3

• dhruva-code / cloud-pentesting

  Cloud penetration testing methods, phases, lifecycle & tools

  cloudpentestingvaptethical-hackingpenetration-testingawsgcloudazuretestcaseslifecyclephasesmethodologypentesting-toolsopensource
  3

• Farial-mahmod / ParrotOS-Vulnerability-Analysis-in-Parrot-Linux

  Parrot OS : Vulnerability Analysis in Parrot Linux is a mobile app that contains tutorials, commands and live screenshots to help aspiring learners in using Parrot Linux Operating System.

  parrotsecparrotosparrotlinuxandroidjavavaptvulnerability-analysismobile-appcybersecuritylinuxethical-hackingeducation
  Language:Java 3

• Ninadjos / DVWA-VAPT-Report

  DVWA--Lab assessment

  cybersecurityethicalhackingredteamvaptvapt-reportdvwadvwa-brute-forcepenetration-testingvulnerability
  3

• Pranav-Amin-10 / security-insights-platform

  The Security Insights Platform is a web-based cybersecurity tool designed to simulate key security assessments. It features three main modules: Automated VAPT, Compliance Audit (GDPR & ISO 27001), and an SSL/TLS Checker. The platform helps users understand and practice core cybersecurity concepts in a simplified environment.

  gdprisoiso27001vaptcompli
  Language:TypeScript 3

• Cappricio-Securities / CVE-2023-27524

  Apache Superset - Authentication Bypass

  cve-2023-2752apache-supersetauthentication-bypassbugbountyvaptwaptapache-superset---authentication-bypasspentesting
  Language:Python 2

• kalmux1 / Huntmate

  Your Ultimate Companion for Security Testing and Vulnerability Tracking

  bug-trackerbugbountybugbounty-toolbugbountytipschecklistscsscybersecurityhtmljavascriptopensourcepenetrationtestingresponsivedesignsecuritysecurityresearchvaptvulnerabilitymanagementwebapplicationwebtoolshuntmatekalmux1
  2

• RayVader987 / Secure-Suite

  It is a Reporting Tool made using VAPT and OSINT

  cli-toolcybersecurityethical-hackingkali-linuxlinux-toolsnetwork-securitynmapopen-source-intelligenceosintpdf-reportpenetration-testingport-scannerpythonreporting-toolsecurity-auditingsecurity-toolsvaptvulnerability-assessmentweb-vulnerability-scanner
  Language:Python 2

• saahen-sriyan-mishra / SecureScan-VAPT_Reports

  This report presents the findings and recommendations from a security assessment conducted on the Home of Acunetix Art Web Application.

  penetration-testingvapt
  2

• yashab-cyber / SecScanX

  AI-Assisted Vulnerability Assessment & Penetration Testing Tool SecScanX is an open-source security scanning platform that combines traditional penetration testing tools with artificial intelligence to provide comprehensive vulnerability assessments. Designed for beginners, researchers, and security professionals,

  aiai-agentscybersecurityethical-hackingvapt
  Language:JavaScript 2

• aniket8757 / Internal-Network-Penetration-testing

  🔒 Internal Network Penetration Testing – A complete module covering methodologies, attack vectors, tools, and hands-on labs to assess and exploit security weaknesses within internal networks.

  cyber-securityethical-hackingexploit-developmentinternal-networknetwork-attacksnetwork-enumerationnetwork-securitypassword-attackpenetration-testingprivilege-escalationsecurity-assessmentsmb-enumerationvaptvulnerability-analysisvulnerability-exploitationexploit-toolsinternal-penetration-testing
  1

• darshanmoradiya / Sure-Internship-report

  Includes final capstone project and internship report, highlighting key learnings, skills gained, and hands-on project experience during the Sure Trust internship.

  computer-netcybersecuritypentestingvaptvapt-report
  1

• Gopalvamsikrishna / SURE_Trust_Internship

  Vulnerability Assessment and Penetration Testing (VAPT) Internship Project conducted under Sure Trust, focusing on identifying security risks in public IP infrastructure using industry-standard tools and methodologies.

  penetration-testingsure-trustvaptburpsuitecybersecurityethical-hackinginfrastructure-securitykali-linuxmetasploitnessusnmapoffensive-securitywireshark
  1

• raushanctf / Metasploitable2

  objective of this assessment is to perform an internal network penetration test on the specified Personal network. The task requires following a comprehensive and systematic approach to achieve the desired outcomes. This test aims to simulate a real-world penetration test within the provided testing environment.

  penetrationpenetration-testingvaptmetasploitablemetasploitable-2webwebapplicationsecurity
  1

• ritik2898 / SURE-Trust-Network-Penetration-Testing

  Black-box network penetration testing project using tools like Nmap, Nessus, Metasploit & Burp Suite. Includes CVSS-based risk assessment & remediation roadmap.

  sure-trustnetwork-securitymetasploit-frameworkmetasploitablenessusnmapnmap-scan-scriptwiresharkblackbox-testingcvssv3cybersecurityexploitexploitationnetworknetwork-penetration-testingvaptvulnerability-assessmentbatch-g-10course-cybersecurity-vapt
  1