Penetration Testing
Pentesting tools and CTF writeups
Showing 81-100 of 602 projects
S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet for common Windows Active Directory enumeration and attack methods
samyk/poisontap
A tool that exploits locked/password protected computers over USB, drops a persistent backdoor, and siphons cookies.
urbanadventurer/WhatWeb
Next generation web scanner for security research and penetration testing
The-Z-Labs/linux-exploit-suggester
Linux privilege escalation auditing tool for identifying vulnerabilities in Linux systems
TCM-Course-Resources/Practical-Ethical-Hacking-Resources
A compilation of resources from the Practical Ethical Hacking Udemy course, focused on Python-based security tools.
vavkamil/awesome-bugbounty-tools
A curated list of various bug bounty tools for web security researchers and bug hunters.
projectdiscovery/naabu
A fast, reliable, and simple port scanner written in Go, ideal for bug bounties and penetration testing.
p1ngul1n0/blackbird
An open-source OSINT tool to search for accounts across social networks by username and email.
alpkeskin/mosint
An automated email OSINT tool for gathering information about email addresses and associated accounts.
AzeemIdrisi/PhoneSploit-Pro
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework.
ffffffff0x/1earn
A security knowledge framework maintained by the ffffffff0x team, covering web security, ICS security, forensics, and more.
commixproject/commix
Automated all-in-one OS command injection exploitation tool for security researchers and penetration testers.
FluxionNetwork/fluxion
Fluxion is an AI-powered tool for cybersecurity researchers and penetration testers, focused on evil-twin attacks and captive portal exploits.
onlurking/awesome-infosec
A curated list of awesome infosec courses and training resources for security professionals.
hak5/usbrubberducky-payloads
A repository of custom payloads for the USB Rubber Ducky, a powerful pen-testing tool for keystroke injection attacks.
Ne0nd0g/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang.
OlivierLaflamme/Cheatsheet-God
A comprehensive penetration testing reference bank for OSCP/PTP & PTX certification preparation.
Pennyw0rth/NetExec
A Python-based network penetration testing tool for security research and red teaming activities.
drk1wi/Modlishka
Modlishka is a reverse proxy tool for penetration testing and security research.
Hackplayers/evil-winrm
A powerful Ruby-based WinRM shell for hacking, penetration testing, and remote Windows management.
Stay in the loop
Get weekly updates on trending AI coding tools and projects.