The Top 3,058 Pentesting Open Source Projects

Awesome Open Source

Awesome Open Source

Share On Twitter

Combined Topics

The Top 3,058 Pentesting Open Source Projects

Topic > Pentesting

Awesome Hacking ⭐ 49,972

A collection of various awesome lists for hackers, pentesters and security researchers

most recent commit 2 months ago

Payloadsallthethings ⭐ 37,535

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

most recent commit 11 hours ago

Sqlmap ⭐ 23,443

Automatic SQL injection and database takeover tool

most recent commit 6 days ago

Awesome Hacking Resources ⭐ 11,766

A collection of hacking / penetration testing resources to make you better!

most recent commit 2 months ago

H4cker ⭐ 11,495

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

most recent commit 9 hours ago

Ciphey ⭐ 9,849

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

total releases 50most recent commit a day ago

Social Analyzer ⭐ 8,942

API, CLI, and Web App for analyzing and finding a person's profile in +1000 social media \ websites

total releases 42most recent commit 7 days ago

Owasp Mstg ⭐ 8,932

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

most recent commit 7 days ago

Pentesting Bible ⭐ 8,066

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

most recent commit a year ago

Dirsearch ⭐ 7,977

Web path scanner

total releases 6most recent commit 19 hours ago

Awesome Security ⭐ 7,963

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

most recent commit 2 months ago

Hacker Roadmap ⭐ 7,910

📌 Penetration testing for beginners. A guide for amateur pentesters and a collection of hacking tools, resources and references to practice ethical hacking.

most recent commit 4 months ago

Spiderfoot ⭐ 7,867

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

most recent commit 6 days ago

Resources For Beginner Bug Bounty Hunters ⭐ 7,630

A list of resources for those interested in getting started in bug bounties

most recent commit 10 days ago

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

most recent commit 2 months ago

Fast web fuzzer written in Go

total releases 17most recent commit 15 hours ago

Juice Shop ⭐ 6,749

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

most recent commit 12 days ago

Awesome Web Security ⭐ 6,737

🐶 A curated list of Web Security materials and resources.

most recent commit 4 months ago

Nishang ⭐ 6,269

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

most recent commit 2 months ago

Rustscan ⭐ 6,150

🤖 The Modern Port Scanner 🤖

total releases 17most recent commit 22 days ago

Thc Hydra ⭐ 6,104

most recent commit 9 days ago

Red Teaming Toolkit ⭐ 6,089

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

most recent commit 14 days ago

Scanners Box ⭐ 5,905

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

most recent commit 3 days ago

Gobuster ⭐ 5,834

Directory/File, DNS and VHost busting tool written in Go

total releases 3most recent commit a month ago

Crackmapexec ⭐ 5,823

A swiss army knife for pentesting networks

total releases 15most recent commit 23 days ago

Monkey ⭐ 5,801

Infection Monkey - An automated pentest tool

most recent commit 6 hours ago

Windows Kernel Exploits ⭐ 5,460

windows-kernel-exploits Windows平台提权漏洞集合

most recent commit a year ago

Sn1per ⭐ 5,230

Attack Surface Management Platform | Sn1perSecurity LLC

most recent commit 11 days ago

Commando Vm ⭐ 4,887

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

most recent commit 10 months ago

Objection ⭐ 4,619

📱 objection - runtime mobile exploration

total releases 75most recent commit 3 months ago

Hacktricks ⭐ 4,586

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

most recent commit 10 hours ago

Beginner Network Pentesting ⭐ 4,525

Notes for Beginner Network Pentesting Course

most recent commit 4 months ago

K8tools ⭐ 4,369

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/ Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jbos

most recent commit a month ago

Infosec_reference ⭐ 4,299

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

most recent commit 2 months ago

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

most recent commit 17 days ago

Penetration_testing_poc ⭐ 4,286

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

most recent commit 6 days ago

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

most recent commit 24 days ago

Airgeddon ⭐ 4,091

This is a multi-use bash script for Linux systems to audit wireless networks.

most recent commit a month ago

Awesome Web Hacking ⭐ 4,012

A list of web application security

most recent commit 7 days ago

Rengine ⭐ 3,989

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

most recent commit 16 days ago

Fuzzdicts ⭐ 3,981

Web Pentesting Fuzz 字典,一个就够了。

most recent commit 5 months ago

Linux Kernel Exploits ⭐ 3,903

linux-kernel-exploits Linux平台提权漏洞集合

most recent commit 2 years ago

Awesome Infosec ⭐ 3,896

A curated list of awesome infosec courses and training resources.

most recent commit 3 months ago

Osmedeus ⭐ 3,835

A Workflow Engine for Offensive Security

most recent commit 2 days ago

Hetty ⭐ 3,758

An HTTP toolkit for security research.

total releases 18most recent commit 2 months ago

Cheatsheet God ⭐ 3,599

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

most recent commit 4 months ago

Whatweb ⭐ 3,592

Next generation web scanner

most recent commit 3 months ago

Osintgram ⭐ 3,290

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

most recent commit 3 months ago

Faraday ⭐ 3,273

Collaborative Penetration Test and Vulnerability Management Platform

dependent packages 1total releases 21most recent commit 2 months ago

pypi faradaysec} Downloads

Commix ⭐ 3,264

Automated All-in-One OS Command Injection Exploitation Tool.

most recent commit 17 hours ago

Hack Tools ⭐ 3,212

The all-in-one Red Team extension for Web Pentester 🛠

most recent commit 15 days ago

Ladon ⭐ 3,078

大型内网渗透扫描器&Cobalt Strike，Ladon9.1.4内置150个模块，包含信息收集/存活主机/端口扫描/服务识别/密码 Strike 3.X-4.0

most recent commit a month ago

Arachni ⭐ 3,033

Web Application Security Scanner Framework

most recent commit 17 days ago

1earn ⭐ 3,024

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

most recent commit 20 days ago

Free Security Ebooks ⭐ 2,988

Free Security and Hacking eBooks

most recent commit 3 years ago

Xunfeng ⭐ 2,946

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

most recent commit a year ago

Yakit ⭐ 2,936

Cyber Security ALL-IN-ONE Platform

most recent commit 2 days ago

Lscript ⭐ 2,921

The LAZY script will make your life easier, and of course faster.

most recent commit 9 months ago

Cameradar ⭐ 2,917

Cameradar hacks its way into RTSP videosurveillance cameras

total releases 7most recent commit 3 days ago

Mobileapp Pentest Cheatsheet ⭐ 2,905

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

most recent commit 9 months ago

Hacking Security Ebooks ⭐ 2,886

Top 100 Hacking & Security E-Books (Free Download)

most recent commit a year ago

Patator ⭐ 2,877

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

total releases 3most recent commit 2 months ago

Drozer ⭐ 2,797

The Leading Security Assessment Framework for Android.

most recent commit 5 hours ago

Socialfish ⭐ 2,787

Phishing Tool & Information Collector

most recent commit 23 days ago

Feroxbuster ⭐ 2,773

A fast, simple, recursive content discovery tool written in Rust.

total releases 62most recent commit 2 days ago

Active Directory Exploitation Cheat Sheet ⭐ 2,771

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

most recent commit 2 months ago

Gather and update all available and newest CVEs with their PoC.

most recent commit 8 hours ago

Red Team Infrastructure Wiki ⭐ 2,746

Wiki to collect Red Team infrastructure hardening resources

most recent commit a year ago

Hakrawler ⭐ 2,705

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

total releases 11most recent commit 3 days ago

Discover ⭐ 2,673

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

most recent commit 21 hours ago

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

most recent commit 22 days ago

Payloads ⭐ 2,619

Git All the Payloads! A collection of web attack payloads.

most recent commit a year ago

Reconftw ⭐ 2,594

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

most recent commit 5 days ago

Learn Web Hacking ⭐ 2,575

Study Notes For Web Hacking / Web安全学习笔记

most recent commit 15 days ago

Vulscan ⭐ 2,429

Advanced vulnerability scanning with Nmap NSE

most recent commit 2 months ago

Java Deserialization Cheat Sheet ⭐ 2,416

The cheat sheet about Java Deserialization vulnerabilities

most recent commit a month ago

Redteaming Tactics And Techniques ⭐ 2,388

Red Teaming Tactics and Techniques

most recent commit a month ago

Pocsuite3 ⭐ 2,386

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

most recent commit a month ago

Defaultcreds Cheat Sheet ⭐ 2,338

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

most recent commit 10 days ago

Raccoon ⭐ 2,337

A high performance offensive security tool for reconnaissance and vulnerability scanning

dependent packages 1total releases 33most recent commit 4 months ago

pypi raccoon-scanner} Downloads

Kubernetes Goat ⭐ 2,324

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

most recent commit 6 hours ago

Evil Winrm ⭐ 2,309

The ultimate WinRM shell for hacking/pentesting

total releases 18most recent commit 4 months ago

Pentest Wiki ⭐ 2,307

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

most recent commit 2 years ago

Vulmap ⭐ 2,266

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

most recent commit a month ago

Winpwn ⭐ 2,262

Automation for internal Windows Penetrationtest / AD-Security

most recent commit 4 days ago

Linux Smart Enumeration ⭐ 2,169

Linux enumeration tool for pentesting and CTFs with verbosity levels

most recent commit a month ago

Awesome Pentest Cheat Sheets ⭐ 2,095

Collection of the cheat sheets useful for pentesting

most recent commit 2 years ago

Monitor linux processes without root permissions

most recent commit 2 years ago

Awesome Hacking ⭐ 1,941

Awesome hacking is an awesome collection of hacking tools.

most recent commit a month ago

Awesome Nodejs Security ⭐ 1,900

Awesome Node.js Security resources

most recent commit 2 months ago

Archerysec ⭐ 1,893

Centralize Vulnerability Assessment and Management for DevSecOps Team

most recent commit 23 days ago

Ssrf Testing ⭐ 1,812

SSRF (Server Side Request Forgery) testing resources

most recent commit 2 months ago

Astra ⭐ 1,800

Automated Security Testing For REST API's

most recent commit 9 months ago

Xssor2 ⭐ 1,797

XSS'OR - Hack with JavaScript.

most recent commit 2 years ago

Ssrfmap ⭐ 1,776

Automatic SSRF fuzzer and exploitation tool

most recent commit 2 months ago

Burpsuite Collections ⭐ 1,768

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解 of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

most recent commit a month ago

Kernelhub ⭐ 1,767

🌴Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

most recent commit a month ago

Poc T ⭐ 1,761

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

total releases 2most recent commit 2 months ago

Pentest Guide ⭐ 1,733

Penetration tests guide based on OWASP including test cases, resources and examples.

most recent commit 2 months ago

Fuxploider ⭐ 1,702

File upload vulnerability scanner and exploitation tool.

most recent commit a year ago

1-100 of 3,058 projects

Related Awesome Lists

Python Pentesting Projects (614)

Hacking Pentesting Projects (392)

Security Pentesting Projects (390)

Categories

Advertising 📦 8

Application Programming Interfaces 📦 107

Applications 📦 174

Artificial Intelligence 📦 69

Blockchain 📦 66

Build Tools 📦 105

Cloud Computing 📦 68

Code Quality 📦 24

Collaboration 📦 27

Command Line Interface 📦 38

Community 📦 79

Companies 📦 60

Compilers 📦 59

Computer Science 📦 73

Configuration Management 📦 37

Content Management 📦 153

Control Flow 📦 187

Data Formats 📦 72

Data Processing 📦 249

Data Storage 📦 116

Economics 📦 56

Frameworks 📦 178

Graphics 📦 92

Hardware 📦 137

Integrated Development Environments 📦 43

Learning Resources 📦 139

Libraries 📦 117

Lists Of Projects 📦 19

Machine Learning 📦 313

Mapping 📦 57

Marketing 📦 15

Mathematics 📦 54

Messaging 📦 96

Networking 📦 292

Operating Systems 📦 72

Operations 📦 114

Package Managers 📦 50

Programming Languages 📦 173

Runtime Environments 📦 90

Science 📦 42

Security 📦 342

Social Media 📦 23

Software Architecture 📦 65

Software Development 📦 60

Software Performance 📦 53

Software Quality 📦 116

Text Editors 📦 40

Text Processing 📦 118

User Interface 📦 291

User Interface Components 📦 440

Version Control 📦 26

Virtualization 📦 63

Web Browsers 📦 35

Web Servers 📦 23

Web User Interface 📦 167

Top Programming Languages

Javascript (1,046,513)

Python (794,038)

Typescript (238,372)

C Plus Plus (235,678)

Shell (169,271)

C Sharp (161,668)

Golang (155,705)

Objective C (57,180)

Kotlin (45,308)

Matlab (30,832)

Language (30,083)

Haskell (20,223)

Clojure (19,065)

Powershell (18,770)

Coffeescript (17,335)

Elixir (16,549)

Assembly (14,508)

Processing (13,295)

Emacs Lisp (10,358)

Solidity (7,543)

Fortran (5,475)

Common Lisp (5,285)

Shell Script (4,626)

Python Library (4,446)

Crystal (4,373)

Scripting (4,199)

Top Projects

Freecodecamp ⭐ 346,085

996.icu ⭐ 262,270

Free Programming Books ⭐ 233,047

Coding Interview University ⭐ 219,725

Awesome ⭐ 201,499

Vue ⭐ 195,787

Developer Roadmap ⭐ 194,812

Public Apis ⭐ 192,026

React ⭐ 188,079

System Design Primer ⭐ 180,726

Tensorflow ⭐ 164,981

Bootstrap ⭐ 157,299

You Dont Know Js ⭐ 152,909

Cs Notes ⭐ 150,780

Ohmyzsh ⭐ 145,101

Build Your Own X ⭐ 141,447

Flutter ⭐ 140,685

Javascript Algorithms ⭐ 140,055

Python ⭐ 136,032

Gitignore ⭐ 133,164

Linux ⭐ 131,866

Vscode ⭐ 131,762

Awesome Python ⭐ 126,837

Javascript ⭐ 122,717

Javaguide ⭐ 121,487

Python 100 Days ⭐ 117,585

Computer Science ⭐ 112,893

Youtube Dl ⭐ 110,029

Fucking Algorithm ⭐ 106,048

The Art Of Command Line ⭐ 105,874

React Native ⭐ 102,754

Electron ⭐ 101,722

30 Seconds Of Code ⭐ 95,528

Create React App ⭐ 95,021

Axios ⭐ 93,400

Awesome Selfhosted ⭐ 88,479

Kubernetes ⭐ 88,475

Free Programming Books Zh_cn ⭐ 88,386

Node ⭐ 87,657

Next.js ⭐ 86,824

Terminal ⭐ 83,149

Deno ⭐ 82,461

Three.js ⭐ 82,021

Angular ⭐ 81,395

Awesome Go ⭐ 80,742

Typescript ⭐ 80,677

Ant Design ⭐ 80,313

Material Ui ⭐ 78,463

Privacy | About | Terms | Follow Us On Twitter

Downloads, Dependent Repos, Dependent Packages, Total Releases, Latest Releases data powered by Libraries.io.

Copyright 2018-2022 Awesome Open Source. All rights reserved.