Penetration Testing

P4wnP1Python

A highly customizable USB attack platform for penetration testing, based on a Raspberry Pi Zero.

Awesome Pentest Cheat Sheets

A curated collection of cheat sheets and resources for penetration testing and security assessments.

gowitnessGo

A Golang command-line utility that uses Chrome Headless to capture website screenshots and gather web data.

PRETPython

A security testing toolkit for exploiting printer languages (PostScript, PJL, PCL) to capture/manipulate print jobs, access filesystems, and cause physical damage.

ssh-auditPython

A security auditing tool for SSH server and client configurations, analyzing algorithms, vulnerabilities, and policy compliance.

bug-bounty-reference

A categorized collection of bug bounty write-ups organized by vulnerability type for security researchers.

tplmapPython

A penetration testing tool that detects and exploits Server-Side Template Injection (SSTI) and code injection vulnerabilities.

retire.jsJavaScript

A scanner that detects JavaScript libraries with known vulnerabilities and can generate a Software Bill of Materials (SBOM).

TorBotPython

An open-source intelligence (OSINT) tool for crawling and analyzing websites on the dark web and beyond.

Social MapperPython

An OSINT tool that uses facial recognition to correlate social media profiles across multiple platforms for security professionals.

Dnscat2PHP

A DNS-based encrypted command-and-control (C&C) tunnel for secure communication and data exfiltration.

PatatorPython

A multi-threaded Python brute-forcing tool with a modular design for reliable and flexible password guessing attacks.

PHPGGCPHP

A library and tool to generate PHP unserialize() payloads for exploiting gadget chains in popular frameworks.

vulscanLua

An Nmap NSE script that transforms nmap into a vulnerability scanner using offline vulnerability databases.

CloudGoatPython

A 'Vulnerable by Design' cloud deployment tool for creating and completing capture-the-flag style security scenarios on AWS and Azure.

subDomainsBrutePython

A high-performance DNS brute-force tool for enumerating subdomains during penetration testing.

RaccoonPython

A high-performance offensive security tool for reconnaissance, vulnerability scanning, and information gathering.

WeevelyPython

A weaponized PHP web shell for post-exploitation with over 30 modules for remote administration, auditing, and network pivoting.

awesome-cve-poc

A curated collection of proof-of-concept exploits for Common Vulnerabilities and Exposures (CVEs).

embaShell

An open-source firmware security analyzer for embedded Linux devices, performing extraction, static/dynamic analysis, SBOM generation, and vulnerability reporting.

nmap-vulnersLua

Nmap NSE script that uses Vulners.com API to detect software vulnerabilities during network scans.

fuzz.txt

A collection of potentially dangerous file names and paths for security testing and fuzzing.

NoSQLMapPython

An automated Python tool for auditing and exploiting NoSQL database vulnerabilities and web application injection attacks.

Cyber Security University

A curated list of free, hands-on educational resources for learning cybersecurity through practical exercises and CTF challenges.

Runtime Mobile Security (RMS)JavaScript

A web interface powered by FRIDA for runtime manipulation, analysis, and security testing of Android and iOS applications.

InspeckageJava

An Xposed module for dynamic analysis of Android apps via API hooks, unexported activity launching, and runtime inspection.

H5SCJavaScript

A comprehensive collection of HTML5-related XSS attack vectors and testing resources for web security professionals.

SecGenPython

A framework that generates randomly vulnerable virtual machines for security education, labs, and CTF events.

trackerjackerPython

A Python tool for mapping and tracking WiFi networks and devices through raw 802.11 monitoring, similar to nmap for wireless networks.

PowerUpSQLPowerShell

A PowerShell toolkit for attacking, auditing, and securing Microsoft SQL Server environments during penetration tests.

AstraPython

An automated security testing framework for REST APIs that detects vulnerabilities like SQL injection, XSS, and CSRF.

King PhisherPython

A phishing campaign toolkit for simulating real-world attacks to test and promote user security awareness.

git-dumperPython

A Python tool to dump a git repository from a website, even when directory listing is disabled.

Some-PoC-oR-ExPPython

A collection of proof-of-concept (PoC) and exploit (Exp) scripts for various security vulnerabilities.

PhpSploitPython

A stealthy command and control framework that persists on webservers via a polymorphic PHP one-liner backdoor.

sn0intRust

A semi-automatic OSINT framework and package manager for gathering intelligence and enumerating attack surfaces.