Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About

Search results for security penetration testing

penetration-testing x
security x
246 search results found
Awesome Hacking ⭐ 77,644
A collection of various awesome lists for hackers, pentesters and security researchers
Payloadsallthethings ⭐ 57,656
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Rustscan ⭐ 15,376
🤖 The Modern Port Scanner 🤖
Hacker Roadmap ⭐ 13,319
A collection of hacking tools, resources and references to practice ethical hacking.
Dirsearch ⭐ 12,439
Web path scanner
Juice Shop ⭐ 10,987
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Awesome Security ⭐ 10,930
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Awesome Web Security ⭐ 10,364
🐶 A curated list of Web Security materials and resources.
Sn1per ⭐ 8,308
Attack Surface Management Platform
Nishang ⭐ 7,771
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Objection ⭐ 6,752
📱 objection - runtime mobile exploration
Wstg ⭐ 6,220
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Reconftw ⭐ 5,890
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Cve ⭐ 5,806
Gather and update all available and newest CVEs with their PoC.
Yakit ⭐ 5,790
Cyber Security ALL-IN-ONE Platform
Whatweb ⭐ 5,663
Next generation web scanner
Osmedeus ⭐ 5,492
A Workflow Engine for Offensive Security
Awesome Web Hacking ⭐ 5,260
A list of web application security
1earn ⭐ 5,171
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Pspy ⭐ 5,065
Monitor linux processes without root permissions
Ladon ⭐ 4,947
Ladon大型内网渗透扫描器,PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、
Awesome Infosec ⭐ 4,810
A curated list of awesome infosec courses and training resources.
Allaboutbugbounty ⭐ 4,793
All about bug bounty (bypasses, payloads, and etc)
Cheatsheet God ⭐ 4,729
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Awesome Shodan Queries ⭐ 4,597
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻
Faraday ⭐ 4,422
Open Source Vulnerability Management Platform
Drozer ⭐ 3,978
The Leading Security Assessment Framework for Android.
Pacu ⭐ 3,879
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Nettacker ⭐ 3,770
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Kubernetes Goat ⭐ 3,694
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Cameradar ⭐ 3,626
Cameradar hacks its way into RTSP videosurveillance cameras
Awesome Pentest Cheat Sheets ⭐ 3,617
Collection of the cheat sheets useful for pentesting
Pocsuite3 ⭐ 3,412
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Kscan ⭐ 3,061
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议
Vulscan ⭐ 2,983
Advanced vulnerability scanning with Nmap NSE
Xunfeng ⭐ 2,946
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Vulmap ⭐ 2,935
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
Awesome Hacking ⭐ 2,716
Awesome hacking is an awesome collection of hacking tools.
Black Hat Rust ⭐ 2,662
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Pentest Tools ⭐ 2,652
A collection of custom security tools for quick needs.
Penetration Testing Tools ⭐ 2,626
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
Astra ⭐ 2,555
Automated Security Testing For REST API's
Snoop ⭐ 2,530
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Awesome Nodejs Security ⭐ 2,515
Awesome Node.js Security resources
Awesome Api Security ⭐ 2,492
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Iotsecurity101 ⭐ 2,370
A Curated list of IoT Security Resources
Pentest Wiki ⭐ 2,307
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Oscp ⭐ 2,235
OSCP Cheat Sheet
Emba ⭐ 2,229
EMBA - The firmware security analyzer
Stowaway ⭐ 2,195
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Owasp Masvs ⭐ 2,081
The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
Venom ⭐ 2,058
Venom - A Multi-hop Proxy for Penetration Testers
Reconnoitre ⭐ 2,053
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
31 Days Of Api Security Tips ⭐ 2,006
This challenge is Inon Shkedy's 31 days API Security Tips.
Awesome Cybersecurity Handbooks ⭐ 1,980
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
Diamorphine ⭐ 1,895
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
Pwndoc ⭐ 1,827
Pentest Report Generator
Dirhunt ⭐ 1,816
Find web directories without bruteforce
Weird_proxies ⭐ 1,746
Reverse proxies cheatsheet
Reconspider ⭐ 1,729
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Owtf ⭐ 1,719
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
Subjack ⭐ 1,665
Subdomain Takeover tool written in Go
Pyrdp ⭐ 1,607
RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
Netexec ⭐ 1,596
The Network Execution Tool
Cloakify ⭐ 1,575
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
Metlo ⭐ 1,537
Metlo is an open-source API security platform.
Collection Document ⭐ 1,416
Collection of quality safety articles. Awesome articles.
Damn Vulnerable Graphql Application ⭐ 1,387
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
Pentest Book ⭐ 1,371
Sprayingtoolkit ⭐ 1,360
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
Sx ⭐ 1,357
🖖 Fast, modern, easy-to-use network scanner
Needle ⭐ 1,349
The iOS Security Testing Framework
Fuxi ⭐ 1,347
Penetration Testing Platform
Noseyparker ⭐ 1,313
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
Top25 Parameter ⭐ 1,311
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
K8cscan ⭐ 1,270
K8Ladon大型内网渗透自定义插件化扫描神器,包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用 C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆 Strike联动
Interlace ⭐ 1,238
Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Cariddi ⭐ 1,228
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Intrigue Core ⭐ 1,205
Discover Your Attack Surface!
Wordlists ⭐ 1,200
Real-world infosec wordlists, updated regularly
Vhostscan ⭐ 1,161
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Fbi Tools ⭐ 1,153
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
Evilgrade ⭐ 1,132
Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.
Mutillidae ⭐ 1,113
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.
Metabigor ⭐ 1,087
OSINT tools and more but without API ke
Ios ⭐ 1,064
Most usable tools for iOS penetration testing
Changeme ⭐ 1,058
A default credential scanner.
Perun ⭐ 1,037
Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫
Inventory ⭐ 1,019
Asset inventory of over 800 public bug bounty programs.
Linuxprivchecker ⭐ 934
linuxprivchecker.py -- a Linux Privilege Escalation Check Script
Broxy ⭐ 932
An HTTP/HTTPS intercept proxy written in Go.
Holytips ⭐ 928
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Evillimiter ⭐ 928
Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Athena Iso ⭐ 902
Athena OS is an Arch Linux-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!
Passhunt ⭐ 898
Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
Enum4linux Ng ⭐ 896
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Ssh Snake ⭐ 874
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
Dumpall ⭐ 865
一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出
Security ⭐ 830
Some of my security stuff and vulnerabilities. Nothing advanced. More to come.
Gorsair ⭐ 829
Gorsair gives root access on remote docker containers that expose their APIs
Related Searches
Security Vulnerabilities (12,358)
Laravel Security (11,580)
Php Security (10,611)
Javascript Security (2,995)
Java Security (2,540)
Html Security (2,284)
Python Security (1,733)
Python Penetration Testing (1,599)
Golang Security (1,316)
Shell Security (1,213)
1-100 of 246 search results
Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2025 Awesome Open Source.  All rights reserved.