#Penetration-testing-tools
Showing 60 of 195 repositories tagged #penetration-testing-tools, ranked by stars
Fully autonomous AI Agents system capable of performing complex penetration testing tasks
Next generation web scanner
Modlishka. Reverse Proxy.
📦 Make security testing of K8s, Docker, and Containerd easier.
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Automating situational awareness for cloud penetration tests.
Autonomous penetration testing using a swarm of AI agents. Orchestrates recon, classification, exploitation, and reporting specialists with ReAct reasoning — supports bug bounty, continuous monitoring, and CTF modes. Built with Go, Claude API, and 7+ native security tools.
基于 AI Agent + MCP 工具链 + 渗透 Skill 编排, 配合大语言模型, 自然语言输入 → 自动完成「信息收集 → 漏洞发现 → 漏洞利用 → 报告生成」全流程。
Automatic SSTI detection tool with interactive interface
SSH based reverse shell
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
LuaN1aoAgent is a cognitive-driven AI hacker. It is a fully autonomous AI penetration testing agent, using dual-graph reasoning.
Statically-linked ssh server with reverse shell functionality for CTFs and such
An HTTP/HTTPS intercept proxy written in Go.
Dangerously fast DNS/network/port scanner
🍉一款基于Python-Django的多功能Web安全渗透测试工具,包含漏洞扫描,端口扫描,指纹识别,目录扫描,旁站扫描,域名扫描等功能。
JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.
A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
新一代Webshell管理器,兼容蚁剑与冰蝎的PHP webshell
Collection of cheat sheets useful for pentesting
A rapid API for the Project Sonar dataset
Pen Test Report Generation and Assessment Collaboration
A repository of tools for pentesting of restricted and isolated environments.
Redeye is a tool intended to help you manage your data during a pentest operation
Hands-on ethical hacking projects for beginners, covering network scanning, web app testing, password cracking, honeypots, Wi-Fi auditing, phishing, and SQL injection.
A Golang implant that uses Slack as a command and control server
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
Automated brute-forcing attack tool.
Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers
Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
Second-order subdomain takeover scanner
Collection of Pentest Notes and Cheatsheets
Little Bug Bounty & Hacking Tools⚔️
A Security Tool for Enumerating WebSockets
The Internets #1 Subdomain Takeover Tool
Tools & Resources for Cyber Security Operations
Complete Roadmap for Penetration Testing
A tool to test security of json web token
Generate tens of thousands of subdomain combinations in a matter of seconds
Repo containing cracked red teaming tools.
PENIOT: Penetration Testing Tool for IoT
Wayback Machine OSINT Framework
PETEP (PEnetration TEsting Proxy) is an open-source Java application for traffic analysis & modification using TCP/UDP proxies. PETEP is a useful tool for performing penetration tests of applications with various application protocols. ⚡
Filter and enrich a list of subdomains by level
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
Modular personalized dictionary generator.
A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.
Make URL path combinations using a wordlist
INE/eLearnSecurity Web Application Penetration Tester (eWPTv2) Notes
Vibe Coding? Cool story. But your vibe might be "security breach waiting to happen." Introducing VibePenTester, the AI pen-tester who rolls its eyes at your half-baked code, discovers your vulnerabilities faster than your coworkers discover free pizza, and gently bullies your web app into compliance. Less "vibe check," more "reality check."
Collection of GoPhish templates available for legitimate usage.
Find CVE PoCs on GitHub
A Python http(s) server designed to assist in red teaming activities such as receiving intercepted data via POST requests and serving content dynamically (e.g. payloads).
Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.
A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
A collection of awesome software, libraries, learning tutorials, documents, books & technical resources and cool stuff about dark web.