Pentest Resources
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Owasp Mastg | 10,085 | 2 days ago | 127 | cc-by-sa-4.0 | Python | |||||
| The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS). | ||||||||||
| Awesome Mobile Security | 1,684 | 2 years ago | 4 | |||||||
| An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it. | ||||||||||
| Androl4b | 1,008 | 3 years ago | 5 | |||||||
| A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis | ||||||||||
| Jackhammer | 599 | 4 years ago | 70 | other | Java | |||||
| Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems. | ||||||||||
| Badintent | 307 | 6 years ago | n,ull | bsd-3-clause | Java | |||||
| Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite | ||||||||||
| Command Mobile Penetration Testing Cheatsheet | 285 | 6 months ago | ||||||||
| Mobile penetration testing android & iOS command cheatsheet | ||||||||||
| Mobileapp Pentest Cheatsheet | 245 | 5 years ago | n,ull | |||||||
| The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics. | ||||||||||
| Evabs | 141 | 3 years ago | CMake | |||||||
| An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners. | ||||||||||
| Digital Forensics With Kali Linux | 65 | 2 months ago | mit | |||||||
| Digital Forensics with Kali Linux, published by Packt | ||||||||||
| Cybergym | 37 | 2 years ago | gpl-3.0 | Java | ||||||
| Lucideus CyberGym is the internal CTF event we organise for our security professionals to grow and learn together. Now everyone can access the challenges that can be easily setup and start playing. | ||||||||||
Penetration Testing Resources
Introduction
This is my personal collection of useful tools, information and methodology for Penetration Testing.
It is meant to be a personal reference and has been collected from all over the internet. I try to provide sources for further reading where possible. Hopefully it can be useful for you too!
Read the gitbook (linked to this repository) here: https://alexanderbittner.gitbook.io/pentest-resources/
Or, if you come from the book, see the repository for additional tools here: https://github.com/alexanderbittner/pentest-resources/
If you have any tips on improving this collection or the methodology behind it, please let me know!
Roadmap
This document is still in a very early stage. There are many things still missing, but below is a roadmap with things that definitely should be added at some point (in no particular order):
- Social Engineering
- Mobile security
- More common vulnerabilities
- Buffer overflows