#Penetration-test
Showing 25 of 25 repositories tagged #penetration-test, ranked by stars
Next generation web scanner
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
💀 Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp Collaborator or Interact.sh
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files.
Automated brute-forcing attack tool.
Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
Collection of GoPhish templates available for legitimate usage.
A comprehensive, step-by-step penetration testing checklist for ethical hackers. Covers pre-engagement, information gathering, analysis, exploitation, reporting, and more. Ideal for both beginners and pros.
A collection of awesome software, libraries, learning tutorials, documents, books & technical resources and cool stuff about dark web.
INE/eLearnSecurity Certified Professional Penetration Tester (eCPPT) / PTP v2 and v3 Notes
A jupyter notebook that contains the main commands executed during a penetration test
For beginners which zero knowledge on ethical hacking!
The VAPT Toolkit provides a streamlined way to install, configure, and maintain a complete penetration testing environment with 50+ security tools and custom automation frameworks organized across multiple categories.
Hacking, pen-testing, and cyber-security related tools built with Python.
Collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. Based on SecLists.
WiFi Hacking: Autonomously man in the middle deauthenticate WPA2 wireless networks and packet capture the three way handshake for offline cracking using Kali Linux and a WiFi antenna.
bash script to automate the penetration test
A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout Threshold and a Reset Account Lockout Counter.
A curated set of offensive security notes on vulnerabilities, techniques, and tools
SSH password crack for penetration tests using brute force and dictionary attacks.
A tool to check for response status codes with ease
IP kung-FU