Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for penetration testing
penetration-testing
x
2,729 search results found
Awesome Hacking
⭐
72,700
A collection of various awesome lists for hackers, pentesters and security researchers
Payloadsallthethings
⭐
55,999
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Sqlmap
⭐
29,628
Automatic SQL injection and database takeover tool
Ciphey
⭐
16,681
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
H4cker
⭐
15,693
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
Awesome Hacking Resources
⭐
14,556
A collection of hacking / penetration testing resources to make you better!
Hacker Roadmap
⭐
12,086
A collection of hacking tools, resources and references to practice ethical hacking.
Rustscan
⭐
11,903
🤖 The Modern Port Scanner 🤖
Owasp Mastg
⭐
11,237
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
Dirsearch
⭐
11,165
Web path scanner
Spiderfoot
⭐
11,035
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Awesome Security
⭐
10,930
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Social Analyzer
⭐
10,841
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Ffuf
⭐
10,658
Fast web fuzzer written in Go
Awesome Web Security
⭐
10,364
🐶 A curated list of Web Security materials and resources.
Resources For Beginner Bug Bounty Hunters
⭐
10,013
A list of resources for those interested in getting started in bug bounties
Juice Shop
⭐
9,406
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Gobuster
⭐
8,960
Directory/File, DNS and VHost busting tool written in Go
Thc Hydra
⭐
8,480
hydra
Red Teaming Toolkit
⭐
8,230
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Crackmapexec
⭐
8,060
A swiss army knife for pentesting networks
Scanners Box
⭐
7,927
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
Osintgram
⭐
7,891
Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname
Pupy
⭐
7,889
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Windows Kernel Exploits
⭐
7,776
windows-kernel-exploits Windows平台提权漏洞集合
Nishang
⭐
7,771
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Hacktricks
⭐
7,688
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Sn1per
⭐
7,480
Attack Surface Management Platform
Objection
⭐
6,752
📱 objection - runtime mobile exploration
Commando Vm
⭐
6,647
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution.
[email protected]
Fuzzdicts
⭐
6,494
Web Pentesting Fuzz 字典,一个就够了。
Rengine
⭐
6,446
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Monkey
⭐
6,414
Infection Monkey - An open-source adversary emulation platform
Wstg
⭐
6,220
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Detect It Easy
⭐
6,155
Program for determining types of files for Windows, Linux and MacOS.
Penetration_testing_poc
⭐
5,946
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Cve
⭐
5,806
Gather and update all available and newest CVEs with their PoC.
Yakit
⭐
5,790
Cyber Security ALL-IN-ONE Platform
Airgeddon
⭐
5,764
This is a multi-use bash script for Linux systems to audit wireless networks.
Pentestgpt
⭐
5,672
A GPT-empowered penetration testing tool
K8tools
⭐
5,502
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/ Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jbos
Infosec_reference
⭐
5,348
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Awesome Web Hacking
⭐
5,260
A list of web application security
Reconftw
⭐
5,204
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Hetty
⭐
5,132
An HTTP toolkit for security research.
Linux Kernel Exploits
⭐
5,093
linux-kernel-exploits Linux平台提权漏洞集合
Whatweb
⭐
5,075
Next generation web scanner
Osmedeus
⭐
5,023
A Workflow Engine for Offensive Security
Defaultcreds Cheat Sheet
⭐
5,023
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Feroxbuster
⭐
5,006
A fast, simple, recursive content discovery tool written in Rust.
Ptf
⭐
4,854
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
1earn
⭐
4,841
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Awesome Infosec
⭐
4,810
A curated list of awesome infosec courses and training resources.
Allaboutbugbounty
⭐
4,793
All about bug bounty (bypasses, payloads, and etc)
Androguard
⭐
4,756
Reverse engineering and pentesting for Android applications
Active Directory Exploitation Cheat Sheet
⭐
4,672
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Awesome Shodan Queries
⭐
4,597
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Hacking Security Ebooks
⭐
4,570
Top 100 Hacking & Security E-Books (Free Download)
Ladon
⭐
4,564
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SM
Cheatsheet God
⭐
4,540
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Pspy
⭐
4,505
Monitor linux processes without root permissions
Faraday
⭐
4,422
Open Source Vulnerability Management Platform
Mobileapp Pentest Cheatsheet
⭐
4,345
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
Commix
⭐
4,302
Automated All-in-One OS Command Injection Exploitation Tool.
Learn Web Hacking
⭐
4,173
Study Notes For Web Hacking / Web安全学习笔记
Free Security Ebooks
⭐
4,126
Free Security and Hacking eBooks
Hakrawler
⭐
4,120
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Redteam Tools
⭐
4,019
Tools and Techniques for Red Team / Penetration Testing
Security Study Plan
⭐
3,949
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
Red Team Infrastructure Wiki
⭐
3,915
Wiki to collect Red Team infrastructure hardening resources
Phonesploit Pro
⭐
3,899
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
Pacu
⭐
3,879
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Evil Winrm
⭐
3,793
The ultimate WinRM shell for hacking/pentesting
Redteaming Tactics And Techniques
⭐
3,744
Red Teaming Tactics and Techniques
Socialfish
⭐
3,705
Phishing Tool & Information Collector
Kubernetes Goat
⭐
3,694
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Mosint
⭐
3,643
An automated e-mail OSINT tool
Arachni
⭐
3,632
Web Application Security Scanner Framework
Cameradar
⭐
3,626
Cameradar hacks its way into RTSP videosurveillance cameras
Awesome Pentest Cheat Sheets
⭐
3,617
Collection of the cheat sheets useful for pentesting
Drozer
⭐
3,590
The Leading Security Assessment Framework for Android.
Pocsuite3
⭐
3,412
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Patator
⭐
3,380
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
Villain
⭐
3,376
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
Payloads
⭐
3,289
Git All the Payloads! A collection of web attack payloads.
Usbrubberducky Payloads
⭐
3,242
The Official USB Rubber Ducky Payload Repository
Discover
⭐
3,238
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Bbot
⭐
3,155
A recursive internet scanner for hackers.
Winpwn
⭐
3,151
Automation for internal Windows Penetrationtest / AD-Security
Awesome Redteam
⭐
3,079
一个攻防知识仓库
Kscan
⭐
3,061
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议
Linux Smart Enumeration
⭐
3,029
Linux enumeration tool for pentesting and CTFs with verbosity levels
Vulscan
⭐
2,983
Advanced vulnerability scanning with Nmap NSE
Java Deserialization Cheat Sheet
⭐
2,949
The cheat sheet about Java Deserialization vulnerabilities
Xunfeng
⭐
2,946
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Vulmap
⭐
2,935
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
Raccoon
⭐
2,928
A high performance offensive security tool for reconnaissance and vulnerability scanning
Lscript
⭐
2,921
The LAZY script will make your life easier, and of course faster.
Nettacker
⭐
2,915
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Burpsuite Collections
⭐
2,914
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解 of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Related Searches
Python Penetration Testing (1,380)
Security Penetration Testing (767)
Scanner Penetration Testing (373)
1-100 of 2,729 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.
