Topic: penetration-testing-tools Goto Github

👇 Here are 364 public repositories matching this topic...

berylliumsec / nebula
penetration-testing-tools,AI-Powered Ethical Hacking Assistant
Organization: berylliumsec
Home Page: https://twitter.com/berylliumsec_
ai crackmapexec ethical-hacking ethical-hacking-tools machine-learning nmap vulnerability-scanners zap metasploit nuclei

bishopfox / cloudfox
penetration-testing-tools,Automating situational awareness for cloud penetration tests.
Organization: bishopfox
Home Page: https://bishopfox.com/blog/introducing-cloudfox
aws cloud cloud-security golang penetration-testing-tools security

bytesnipers / awesome-pentest-cheat-sheets
penetration-testing-tools,Collection of cheat sheets useful for pentesting
User: bytesnipers
Home Page: https://bytesnipers.com
cheat-sheet penetration-testing penetration-testing-tools pentest pentest-cheat-sheets pentesting pentesting-resources cheat-sheet-pentest

cdk-team / cdk
penetration-testing-tools,📦 Make security testing of K8s, Docker, and Containerd easier.
Organization: cdk-team
Home Page: https://github.com/cdk-team/CDK/wiki
penetration penetration-testing-tools kubernetes docker hacktools k8s-penetration-toolkit k8s linux exploits cloud-native

cervantessec / cervantes
penetration-testing-tools,Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
Organization: cervantessec
Home Page: https://www.cervantessec.org/
hacking security collaboration collaboration-platform nessus penetration-testing penetration-testing-tools pentesting vulnerability vulnerability-management

cgboal / sonarsearch
penetration-testing-tools,A rapid API for the Project Sonar dataset
User: cgboal
subdomain enumeration bugbounty penetration-testing penetration-testing-tools dns sonar-api subdomain-enumeration osint osint-tool

coalfire-research / slackor
penetration-testing-tools, A Golang implant that uses Slack as a command and control server
Organization: coalfire-research
Home Page: https://www.coalfire.com/The-Coalfire-Blog/June-2019/Introducing-Slackor
pentest golang python c2 penetration-testing penetration-testing-tools remote-admin-tool command-and-control red-team

cyberark / evasor
penetration-testing-tools,A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies
Organization: cyberark
Home Page: https://github.com/cyberark/
post-exploitation bypass-applocker-policies penetration-testing-tools full-automated

dfw1n / dfw1n-osint
penetration-testing-tools,Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers
User: dfw1n
Home Page: https://www.crimol.com
osint-resources osint-reconnaissance osint ethical-hacking australia cybersecurity osint-framework darkweb-data opensource social-media

dontpanico / jwtxploiter
penetration-testing-tools,A tool to test security of json web token
User: dontpanico
jku jwks x5u-injection jwt jwt-security jwt-cracker jwt-exploit security-tools pentesting pentest

drk1wi / modlishka
penetration-testing-tools,Modlishka. Reverse Proxy.
User: drk1wi
phishing penetration-testing-tools mitm reverse-proxy security-tools

edoardottt / lit-bb-hack-tools
penetration-testing-tools,Little Bug Bounty & Hacking Tools⚔️
User: edoardottt
Home Page: https://edoardoottavianelli.it
bugbounty hacking security-tools bug-bounty infosec bug-bounty-recon hacking-tool hacking-tools ctf-tools tools

esc4icescesc / skanuvaty
penetration-testing-tools,Dangerously fast DNS/network/port scanner
User: esc4icescesc
penetration-testing penetration-testing-tools pentesting pentest dns dns-client subdomain-scanner subdomain-enumeration scanner rust

factionsecurity / faction
penetration-testing-tools,Pen Test Report Generation and Assessment Collaboration
Organization: factionsecurity
Home Page: https://www.factionsecurity.com/
application-security hacking penetration-testing penetration-testing-tools pentesting reporting security security-audit security-automation security-tools

fahrj / reverse-ssh
penetration-testing-tools,Statically-linked ssh server with reverse shell functionality for CTFs and such
User: fahrj
ssh security security-tools hacking penetration-testing penetration-testing-tools reverse-shell golang remote-admin-tool remote-shell

hackmanit / web-cache-vulnerability-scanner
penetration-testing-tools,Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
Organization: hackmanit
vulnerability-scanners web-cache security-tools security-scanner security security-audit pentesting penetration-testing-tools penetration-testing bugbounty

helich0pper / karkinos
penetration-testing-tools,Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
User: helich0pper
encryption-decryption cracking-hashes hashing-algorithms reverse-shell encoder-decoder pentesting pentest-tools swiss-army-knife penetration-testing-tools ctf ctf-tools hacking-tools

hueristiq / xurlfind3r
penetration-testing-tools,A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
Organization: hueristiq
Home Page: https://github.com/hueristiq/xurlfind3r
osint penetration-testing penetration-testing-tools bug-bounty bug-bounty-tools ethical-hacking ethical-hacking-tools osint-tools red-teaming red-teaming-tools

infosechouse / infosechouse
penetration-testing-tools,Tools & Resources for Cyber Security Operations
Organization: infosechouse
Home Page: https://infosec.house/
infosec resources hacking pentest-tools incident-response offensive-security defensive-security bugbounty bugbounty-tool infosec-reference

infosecmatter / minimalistic-offensive-security-tools
penetration-testing-tools,A repository of tools for pentesting of restricted and isolated environments.
User: infosecmatter
login-automation powershell brute-force penetration-testing windows login-brute-force-attacks penetration-testing-tools security-automation restricted-environments security-audit

iomoath / sharpstrike
penetration-testing-tools,A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.
User: iomoath
Home Page: https://c99.sh/sharpstrike-post-exploitation-tool-cim-wmi-inside/
cybersecurity redteam-tools redteaming penetration-testing penetration-testing-tools wmi wsman winrm

itaymigdal / nimbo-c2
penetration-testing-tools,Nimbo-C2 is yet another (simple and lightweight) C2 framework
User: itaymigdal
c2 command-and-control pentesting-tools rat red-team red-team-tools c2-framework payload-generator penetration-testing-tools

jwt1399 / sec-tools
penetration-testing-tools,🍉一款基于Python-Django的多功能Web安全渗透测试工具，包含漏洞扫描，端口扫描，指纹识别，目录扫描，旁站扫描，域名扫描等功能。
User: jwt1399
python3 django security-tools scan-tool vulnerability-scanners penetration-testing-tools

kelvinben / appinfoscanner
penetration-testing-tools,一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。
User: kelvinben
security python3 tools apk apk-dex android ipa scanner web-hacking security-tools

mattkeeley / spoofy
penetration-testing-tools,Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
User: mattkeeley
application-security appsec cybersecurity deliverability dmarc email-security emails infosec penetration-testing penetration-testing-tools

mhmdiaa / second-order
penetration-testing-tools,Second-order subdomain takeover scanner
User: mhmdiaa
security security-tools wordlist wordlist-generator penetration-testing pentesting infosec recon reconnaissance mapping

michaeldim02 / narthex
penetration-testing-tools,Modular personalized dictionary generator.
User: michaeldim02
Home Page: https://mcdim.xyz/projects/n/
dictionary shell hacking password-cracking password-recovery password-attack dictionary-attack penetration-testing penetration-testing-tools unix

ms-web-bn / t14m4t
penetration-testing-tools,Automated brute-forcing attack tool.
User: ms-web-bn
bruteforce brute-force brute-force-attacks brute-force-attack brute-force-passwords hacking hacking-tool hacking-tools nmap thc-hydra

palindromelabs / stews
penetration-testing-tools,A Security Tool for Enumerating WebSockets
Organization: palindromelabs
security websocket websockets penetration-testing web-application-security penetration-testing-tools websocket-security websockets-security

putsi / privatecollaborator
penetration-testing-tools,A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
User: putsi
Home Page: https://teamrot.fi/2019/05/23/self-hosted-burp-collaborator-with-custom-domain/
burp collaborator penetration-testing penetration-testing-tools bugbounty burpsuite burpsuitepro

r0x4r / garud
penetration-testing-tools,An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
User: r0x4r
bugbounty bugbountytips bugbounty-tool reconnaissance subdomain-takeover golang bash-script penetration-testing penetration-testing-tools garud

radenvodka / recsech
penetration-testing-tools,Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
User: radenvodka
recon research tools recon-tools php security-vulnerability security-audit security-tools hacking-tool websecurity

redeye-framework / redeye
penetration-testing-tools,Redeye is a tool intended to help you manage your data during a pentest operation
User: redeye-framework
blueteam framework knowledge-base penetration-testing penetration-testing-tools redeye redteam

rhaidiz / broxy
penetration-testing-tools,An HTTP/HTTPS intercept proxy written in Go.
User: rhaidiz
wapt proxy interceptor broxy http-interceptor hacking security http-proxy qt5-gui golang

shadow-workers / shadow-workers
penetration-testing-tools,Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
Organization: shadow-workers
Home Page: https://shadow-workers.github.io
xss-exploitation service-worker c2 proxy penetration-testing-tools

sinfulz / justtryharder
penetration-testing-tools,JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
User: sinfulz
oscp testing penetration penetration-testing penetration-test penetration-test-framework penetration-testing-tools penetration-tests pentesting pentest

sofianehamlaoui / pentest-notes
penetration-testing-tools,Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
User: sofianehamlaoui
sofianehamlaoui security security-tools security-audit cheatsheets offensive-security pentesting penetration-testing penetration-testing-tools

softrams / bulwark
penetration-testing-tools,An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Organization: softrams
security-tools vulnerability-management angular typeorm typescript nodejs express webappsec appsec application-security

stratus-security / subdominator
penetration-testing-tools,The Internets #1 Subdomain Takeover Tool
Organization: stratus-security
Home Page: https://www.stratussecurity.com
bug-bounty infosec penetration-testing penetration-testing-tools pentesting security subdomain subdomain-takeover

t3l3machus / villain
penetration-testing-tools,Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
User: t3l3machus
open-source pentest pentesting readteaming redteam-tools redteam cybersecurity offensive-security c2 hacking

trickest / dsieve
penetration-testing-tools,Filter and enrich a list of subdomains by level
Organization: trickest
Home Page: https://trickest.com
bugbounty enumeration infosec infosectools penetration-testing penetration-testing-tools pentesting pentesting-tools security subdomain

trickest / find-gh-poc
penetration-testing-tools,Find CVE PoCs on GitHub
Organization: trickest
Home Page: https://trickest.com
security security-tools exploit hacking penetration-testing penetration-testing-tools pentesting poc vulnerability cve

trickest / mkpath
penetration-testing-tools,Make URL path combinations using a wordlist
Organization: trickest
Home Page: https://trickest.com
bugbountytips directory-bruteforce enumeration fuzzing penetration-testing penetration-testing-tools pentesting pentesting-tools recon reconnaissance

trickest / mksub
penetration-testing-tools,Generate tens of thousands of subdomain combinations in a matter of seconds
Organization: trickest
Home Page: https://trickest.com
bugbounty bugbountytips enumeration infosec infosectools penetration-testing penetration-testing-tools pentesting pentesting-tools recon

urbanadventurer / whatweb
penetration-testing-tools,Next generation web scanner
User: urbanadventurer
Home Page: https://www.morningstarsecurity.com/research/whatweb
security web scanner ruby penetration-testing kali-linux owasp penetration-testing-tools penetration-test hacking

viralmaniar / xposedornot
penetration-testing-tools,XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
User: viralmaniar
osint osinttool password-leak credentials-gathering reconnaissance recon penetration-testing-tools intelligence-gathering password-breach breach-compilation

vladko312 / sstimap
penetration-testing-tools,Automatic SSTI detection tool with interactive interface
User: vladko312
information-security penetration-testing penetration-testing-tools pentest pentest-tool pentesting pentesting-tools rce ssti python

warxim / petep
penetration-testing-tools,PETEP (PEnetration TEsting Proxy) is an open-source Java application for traffic analysis & modification using TCP/UDP proxies. PETEP is a useful tool for performing penetration tests of applications with various application protocols. ⚡
User: warxim
Home Page: https://petep.warxim.com
ethical-hacking ethical-hacking-tools hacking hacking-tool hacking-tools hackingtools mitm mitmproxy penetration-testing penetration-testing-tools pentest pentesting pentesting-tools proxy security ssl tcp tcp-proxy tls udp

x364e3ab6 / dudesuite
penetration-testing-tools,Dude Suite Web 渗透测试工具
User: x364e3ab6
browser dude hacker packet penetration-testing-tools scan scanner-web gui hackertools hydra

yakuza8 / peniot
penetration-testing-tools,PENIOT: Penetration Testing Tool for IoT
User: yakuza8
Home Page: https://senior.ceng.metu.edu.tr/2019/peniot/
python2-7 iot penetration-testing hacking penetration-testing-framework penetration-testing-tools hacking-tools python iot-hacking amqp