#Penetration-testing

Showing 60 of 1590 repositories tagged #penetration-testing, ranked by stars

Hack-with-Github
Hack-with-Github
Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

Score
100
★ 115.8k ⑂ 10.5k +179/day
swisskyrepo
swisskyrepo
PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Score
100
★ 79.0k ⑂ 17.2k +72/day
Python
KeygraphHQ
KeygraphHQ
shannon

Shannon is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities before they reach production.

Score
100
★ 45.6k ⑂ 5.3k +155/day
TypeScript
usestrix
usestrix
strix

Open-source AI penetration testing tool to find and fix your app’s vulnerabilities.

Score
98
★ 39.8k ⑂ 4.2k +443/day
Python
The-Art-of-Hacking
The-Art-of-Hacking
h4cker

This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security, vulnerability research, exploit development, reverse engineering, and more. 🔥 Also check: https://hackertraining.org

Score
100
★ 28.3k ⑂ 5.3k +135/day
Jupyter Notebook
mukul975
mukul975
Anthropic-Cybersecurity-Skills

817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0

Score
96
★ 24.9k ⑂ 2.9k +494/day
Python
vxcontrol
vxcontrol
pentagi

Fully autonomous AI Agents system capable of performing complex penetration testing tasks

Score
100
★ 18.5k ⑂ 2.5k +414/day
Go
vitalysim
vitalysim
Awesome-Hacking-Resources

A collection of hacking / penetration testing resources to make you better!

Score
100
★ 17.2k ⑂ 2.2k +29/day
sundowndev
sundowndev
hacker-roadmap

A collection of hacking tools, resources and references to practice ethical hacking.

Score
97
★ 15.5k ⑂ 1.7k +23/day
maurosoria
maurosoria
dirsearch

Web path scanner

Score
93
★ 14.5k ⑂ 2.4k +7/day
Python
GreyDGL
GreyDGL
PentestGPT

Automated Penetration Testing Agentic Framework Powered by Large Language Models

Score
91
★ 14.1k ⑂ 2.5k +59/day
Python
qazbnm456
qazbnm456
awesome-web-security

🐶 A curated list of Web Security materials and resources.

Score
89
★ 13.6k ⑂ 1.8k +13/day
Python
Datalux
Datalux
Osintgram

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Score
71
★ 13.4k ⑂ 2.9k +45/day
Python
vanhauser-thc
vanhauser-thc
thc-hydra

hydra

Score
100
★ 12.0k ⑂ 2.6k +19/day
C
1N3
1N3
Sn1per

Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ detections.

Score
100
★ 10.3k ⑂ 2.1k +16/day
Shell
samratashok
samratashok
nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Score
96
★ 10.0k ⑂ 2.5k +8/day
PowerShell
OWASP
OWASP
wstg

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Score
100
★ 9.6k ⑂ 1.6k +16/day
A-poc
A-poc
RedTeam-Tools

Tools and Techniques for Red Team / Penetration Testing

Score
99
★ 9.4k ⑂ 1.3k +173/day
We5ter
We5ter
Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Score
100
★ 9.0k ⑂ 2.4k +6/day
yogeshojha
yogeshojha
rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Score
99
★ 8.7k ⑂ 1.3k +11/day
HTML
trickest
trickest
cve

Gather and update all available and newest CVEs with their PoC.

Score
99
★ 7.9k ⑂ 976 +7/day
HTML
six2dez
six2dez
reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Score
99
★ 7.8k ⑂ 1.2k +60/day
Shell
mandiant
mandiant
commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

Score
98
★ 7.7k ⑂ 1.4k +2/day
PowerShell
jakejarvis
jakejarvis
awesome-shodan-queries

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Score
95
★ 7.6k ⑂ 1.0k +14/day
Mr-xn
Mr-xn
Penetration_Testing_POC

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Score
100
★ 7.4k ⑂ 2.0k +7/day
HTML
infoslack
infoslack
awesome-web-hacking

A list of web application security

Score
99
★ 7.0k ⑂ 1.3k +6/day
guardicore
guardicore
monkey

Infection Monkey - An open-source adversary emulation platform

Score
58
★ 7.0k ⑂ 818 +2/day
Python
daffainfo
daffainfo
AllAboutBugBounty

All about bug bounty (bypasses, payloads, and etc)

Score
95
★ 6.8k ⑂ 1.3k +14/day
urbanadventurer
urbanadventurer
WhatWeb

Next generation web scanner

Score
99
★ 6.7k ⑂ 999 +14/day
Ruby
S1ckB0y1337
S1ckB0y1337
Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Score
99
★ 6.7k ⑂ 1.3k +5/day
infobyte
infobyte
faraday

Open Source Vulnerability Management Platform

Score
87
★ 6.6k ⑂ 1.1k +5/day
Python
j3ssie
j3ssie
osmedeus

A Modern Orchestration Engine for Security

Score
93
★ 6.5k ⑂ 1.0k +2/day
Go
yeahhub
yeahhub
Hacking-Security-Ebooks

Top 100 Hacking & Security E-Books (Free Download)

Score
94
★ 6.4k ⑂ 1.2k +7/day
AzeemIdrisi
AzeemIdrisi
PhoneSploit-Pro

An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

Score
80
★ 6.0k ⑂ 836 +9/day
Python
rmusser01
rmusser01
Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Score
97
★ 6.0k ⑂ 1.2k +2/day
CSS
mishakorzik
mishakorzik
AllHackingTools

All-in-One Hacking Tools For Hackers! And more hacking tools! For termux.

Score
98
★ 5.9k ⑂ 967 +21/day
Shell
onlurking
onlurking
awesome-infosec

A curated list of awesome infosec courses and training resources.

Score
98
★ 5.7k ⑂ 748 +8/day
OlivierLaflamme
OlivierLaflamme
Cheatsheet-God

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Score
94
★ 5.6k ⑂ 1.3k +1/day
LyleMi
LyleMi
Learn-Web-Hacking

Study Notes For Web Hacking / Web安全学习笔记

Score
82
★ 5.4k ⑂ 943 +10/day
Python
OWASP
OWASP
Nettacker

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Score
84
★ 5.3k ⑂ 1.1k +8/day
Python
RhinoSecurityLabs
RhinoSecurityLabs
pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Score
78
★ 5.3k ⑂ 789 +3/day
Python
Ullaakut
Ullaakut
cameradar

Cameradar hacks its way into RTSP videosurveillance cameras

Score
87
★ 5.1k ⑂ 623 +3/day
Go
Hack-with-Github
Hack-with-Github
Free-Security-eBooks

Free Security and Hacking eBooks

Score
93
★ 4.9k ⑂ 1.1k +3/day
techchipnet
techchipnet
CamPhish

Grab cam shots & GPS location from target's phone front camera or PC webcam just sending a link.

Score
94
★ 4.8k ⑂ 1.3k +5/day
HTML
may215
may215
awesome-termux-hacking

⚡️An awesome list of the best Termux hacking tools

Score
71
★ 4.7k ⑂ 370 +7/day
t3l3machus
t3l3machus
Villain

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).

Score
92
★ 4.4k ⑂ 691
Python
coreb1t
coreb1t
awesome-pentest-cheat-sheets

Collection of the cheat sheets useful for pentesting

Score
92
★ 4.4k ⑂ 793
zan8in
zan8in
afrog

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Score
80
★ 4.3k ⑂ 474 +3/day
Go
arismelachroinos
arismelachroinos
lscript

The LAZY script will make your life easier, and of course faster.

Score
93
★ 4.3k ⑂ 1.1k
Shell
guelfoweb
guelfoweb
knockpy

Knock Subdomain Scan

Score
98
★ 4.2k ⑂ 882 +1/day
Python
jonaslejon
jonaslejon
malicious-pdf

💀 Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp Collaborator or Interact.sh

Score
76
★ 4.1k ⑂ 542
Python
Arachni
Arachni
arachni

Web Application Security Scanner Framework

Score
99
★ 4.0k ⑂ 785 +2/day
Ruby
shuvonsec
shuvonsec
claude-bug-bounty

AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

Score
99
★ 3.9k ⑂ 692 +42/day
Python
jekil
jekil
awesome-hacking

Awesome hacking is an awesome collection of hacking tools.

Score
99
★ 3.9k ⑂ 627
Python
Samsar4
Samsar4
Ethical-Hacking-Labs

Practical Ethical Hacking Labs 🗡🛡

Score
92
★ 3.8k ⑂ 898 +6/day
0xsyr0
0xsyr0
OSCP

OSCP Cheat Sheet

Score
99
★ 3.8k ⑂ 775 +4/day
PowerShell
scipag
scipag
vulscan

Advanced vulnerability scanning with Nmap NSE

Score
98
★ 3.8k ⑂ 696 +2/day
Lua
0xsyr0
0xsyr0
Awesome-Cybersecurity-Handbooks

A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.

Score
99
★ 3.8k ⑂ 547 +34/day
husnainfareed
husnainfareed
awesome-ethical-hacking-resources

😎 🔗 Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.

Score
98
★ 3.6k ⑂ 556 +28/day
e-m-b-a
e-m-b-a
emba

EMBA - The firmware security analyzer

Score
99
★ 3.5k ⑂ 312 +4/day
Shell
Related Topics
#hacking#security#pentesting#security-tools#infosec#pentest#bugbounty#cybersecurity#hacking-tool#scanner#awesome#bug-bounty

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly