Awesome Open Source

Programming Languages

Search results for python pentesting

1,199 search results found

Payloadsallthethings ⭐ 50,977

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Sqlmap ⭐ 28,004

Automatic SQL injection and database takeover tool

Ciphey ⭐ 14,022

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Owasp Mastg ⭐ 10,699

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

Social Analyzer ⭐ 10,330

API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

Spiderfoot ⭐ 10,330

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Dirsearch ⭐ 10,307

Web path scanner

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

Crackmapexec ⭐ 7,569

A swiss army knife for pentesting networks

Osintgram ⭐ 7,385

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Hacktricks ⭐ 7,215

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Objection ⭐ 6,393

📱 objection - runtime mobile exploration

Monkey ⭐ 6,327

Infection Monkey - An open-source adversary emulation platform

Fuzzdicts ⭐ 6,273

Web Pentesting Fuzz 字典,一个就够了。

Pentestgpt ⭐ 4,995

A GPT-empowered penetration testing tool

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

Androguard ⭐ 4,629

Reverse engineering and pentesting for Android applications

Defaultcreds Cheat Sheet ⭐ 4,472

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Faraday ⭐ 4,192

Open Source Vulnerability Management Platform

Commix ⭐ 4,015

Automated All-in-One OS Command Injection Exploitation Tool.

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Socialfish ⭐ 3,631

Phishing Tool & Information Collector

Phonesploit Pro ⭐ 3,496

An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

Learn Web Hacking ⭐ 3,401

Study Notes For Web Hacking / Web安全学习笔记

Patator ⭐ 3,281

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

Pocsuite3 ⭐ 3,207

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Villain ⭐ 3,091

Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

Xunfeng ⭐ 2,946

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Vulmap ⭐ 2,935

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

OSINT automation for hackers.

Awesome Redteam ⭐ 2,672

一个攻防知识仓库

Burpsuite Collections ⭐ 2,665

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解 of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Pentest Tools ⭐ 2,652

A collection of custom security tools for quick needs.

Nettacker ⭐ 2,584

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Raccoon ⭐ 2,571

A high performance offensive security tool for reconnaissance and vulnerability scanning

Awesome Hacking ⭐ 2,570

Awesome hacking is an awesome collection of hacking tools.

Nosqlmap ⭐ 2,504

Automated NoSQL database enumeration and web application exploitation tool.

Hoaxshell ⭐ 2,455

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

Pentest Wiki ⭐ 2,307

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Ssrfmap ⭐ 2,306

Automatic SSRF fuzzer and exploitation tool

Astra ⭐ 2,248

Automated Security Testing For REST API's

Snoop ⭐ 2,226

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Arsenal ⭐ 2,197

Arsenal is just a quick inventory and launcher for hacking programs

Evilosx ⭐ 2,089

An evil RAT (Remote Administration Tool) for macOS / OS X.

Slowloris ⭐ 2,054

Low bandwidth DoS tool. Slowloris rewrite in Python.

Malicious Pdf ⭐ 2,029

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

Ssrf Testing ⭐ 2,014

SSRF (Server Side Request Forgery) testing resources

Cloudfail ⭐ 1,954

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Finalrecon ⭐ 1,863

All In One Web Recon

Owasp Masvs ⭐ 1,808

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

Xssor2 ⭐ 1,797

XSS'OR - Hack with JavaScript.

Blackbird ⭐ 1,780

An OSINT tool to search for accounts by username in social networks.

Poc T ⭐ 1,761

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Reconspider ⭐ 1,729

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Fuxploider ⭐ 1,702

File upload vulnerability scanner and exploitation tool.

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

Hacktronian ⭐ 1,664

Tools for Pentesting

Pwn_jenkins ⭐ 1,604

Notes about attacking Jenkins servers

Vxscan ⭐ 1,566

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释

Dirhunt ⭐ 1,552

Find web directories without bruteforce

Mitmap ⭐ 1,511

📡 A python program to create a fake AP and sniff data.

Rapidscan ⭐ 1,489

🆕 The Multi-Tool Web Vulnerability Scanner.

Easy_hack ⭐ 1,466

Hack the World using Termux

Macro_pack ⭐ 1,420

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

ODAT: Oracle Database Attacking Tool

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

V3n0m Scanner ⭐ 1,322

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Sprayingtoolkit ⭐ 1,283

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

Needle ⭐ 1,277

The iOS Security Testing Framework

Deathstar ⭐ 1,244

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.

Exegol ⭐ 1,239

Fully featured and community-driven hacking environment

Dronesploit ⭐ 1,213

Drone pentesting framework console

Pentest Notes ⭐ 1,202

Lockdoor Framework ⭐ 1,197

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Cloud_enum ⭐ 1,179

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Medusa ⭐ 1,176

Binary instrumentation framework based on FRIDA

Mongoaudit ⭐ 1,154

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Writehat ⭐ 1,139

A pentest reporting tool written in Python. Free yourself from Microsoft Word.

Github Search ⭐ 1,121

A collection of tools to perform searches on GitHub.

Interlace ⭐ 1,080

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Redsnarf ⭐ 1,075

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Scanless ⭐ 1,061

online port scan scraper

Changeme ⭐ 1,058

A default credential scanner.

Toxssin ⭐ 1,036

An XSS exploitation command-line interface and payload generator.

Hackerpro ⭐ 1,033

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

Fsociety ⭐ 1,030

A Modular Penetration Testing Framework

Ghostwriter ⭐ 1,019

The SpecterOps project management and reporting engine

Linkedin2username ⭐ 1,000

OSINT Tool: Generate username lists for companies on LinkedIn

Graphqlmap ⭐ 998

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Babysploit ⭐ 965

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Linuxprivchecker ⭐ 934

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

Evillimiter ⭐ 928

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Recoverpy ⭐ 905

Interactively find and recover deleted or 👉 overwritten 👈 files from your terminal

Passhunt ⭐ 898

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Evilurl ⭐ 871

Generate unicode domains for IDN Homograph Attack and detect them.

Dumpall ⭐ 865

一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

Cansina ⭐ 850

Web Content Discovery Tool

Passphrase Wordlist ⭐ 849

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Hosthunter ⭐ 826

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Hacking Toolkit

Related Searches

Python Script (17,122)

Javascript Python (10,214)

Python Html (9,891)

Python Testing (9,432)

Python Plugin (9,263)

Python Natural Language Processing (8,742)

Python Artificial Intelligence (8,580)

Python Aws (7,633)

Python Search (5,943)

Python Cli (5,367)

1-100 of 1,199 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2023 Awesome Open Source. All rights reserved.