Scripts that are intended to help you in your pen-testing and bug-hunting efforts by automating various manual tasks, making your work more efficient and effective.
☆99Sep 27, 2025Updated 5 months ago
Alternatives and similar repositories for Offensive-Pentesting-Scripts
Users that are interested in Offensive-Pentesting-Scripts are comparing it to the libraries listed below
Sorting:
- Penetration testing tools cheat sheet, a quick reference high level overview for typical penetration testing engagements. Convenient comm…☆97Oct 13, 2025Updated 5 months ago
- A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…☆103Feb 12, 2025Updated last year
- List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.☆430Updated this week
- Passive Reconnaissance Techniques Approach helps for penetration testing and bug bounty hunting by gathering information about a target s…☆20Aug 19, 2025Updated 7 months ago
- ☆13Oct 16, 2025Updated 5 months ago
- nmap nse script for scan a whole country☆13Jun 28, 2022Updated 3 years ago
- Just some random Red Team Scripts that can be useful☆153Jun 28, 2024Updated last year
- NeXSS is a modern, self-hosted Blind XSS (Cross-Site Scripting) hunter and callback listener built with Next.js. It helps security resear…☆30Jan 14, 2026Updated 2 months ago
- Bypass 403 pages☆130Jun 30, 2024Updated last year
- ☆39May 4, 2025Updated 10 months ago
- robertfoster's PKGBUILD☆11Updated this week
- Parallelized enumeration tool for red team engagements and bug bounty programs.☆16Mar 31, 2021Updated 4 years ago
- OpenAI Security Console - Python3 AI-powered Cybersecurity Framework☆16Mar 25, 2023Updated 2 years ago
- ☆11Dec 17, 2023Updated 2 years ago
- Burp Bounty Lab provides a safe, local target to validate that your Burp Bounty Pro scanner profiles detect vulnerabilities correctly. It…☆40Updated this week
- All combinations of various characters, to get the desired word☆21Dec 13, 2023Updated 2 years ago
- Autorev.sh generates reverse shell codes for reverse shell . Supports linux and windows☆17Apr 8, 2022Updated 3 years ago
- IP/FQDN data structure helper with randomization of hosts and ports based on masscan internal logic☆68Jul 7, 2024Updated last year
- top usernames from azure survey 2025☆15Apr 25, 2025Updated 10 months ago
- This lab is for **EDUCATIONAL PURPOSES ONLY**. Use it responsibly and only on systems you own or have explicit permission to test. Do not…☆17Feb 20, 2026Updated last month
- Burp suite extension which help you to find inconsistency between content-type header and body parsers☆11Sep 14, 2025Updated 6 months ago
- Monitor your target continuously for new subdomains!☆25Mar 18, 2023Updated 3 years ago
- Automate Nuclei scans and streamline bug hunting workflows☆21Feb 16, 2024Updated 2 years ago
- Master Kali Linux, Excel in Offensive Security☆32Jun 15, 2025Updated 9 months ago
- ☆12Apr 5, 2025Updated 11 months ago
- This script was developped to assist in SpearPhishing campaign during Red Team operations. It can be used to generate random name based o…☆13Feb 6, 2023Updated 3 years ago
- Powershell Scripts for Blue Team members☆11Dec 1, 2023Updated 2 years ago
- Collections of Tools, Bookmarks, and other guides created to aid in OSINT collection☆18Aug 18, 2021Updated 4 years ago
- This little script for gathering chaos.projectdiscovery.io recon data in an organized way and finding the daily differences on it☆18Aug 9, 2020Updated 5 years ago
- ☆11Jun 5, 2022Updated 3 years ago
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Mar 11, 2025Updated last year
- ☆13Apr 6, 2022Updated 3 years ago
- Deploy a phishing infrastructure on the fly.☆77Dec 21, 2024Updated last year
- A powerful and clean bash script to dump and extract information from Project Discovery's Chaos Project https://chaos.projectdiscovery.io…☆25Mar 31, 2022Updated 3 years ago
- Parser to convert BURP Pro .XML to .CSV and build a Word .Docx Template☆14Dec 8, 2021Updated 4 years ago
- WordPress File Upload RCE Exploit☆17Sep 1, 2025Updated 6 months ago
- A small script that automates Entra ID persistence with Windows Hello For Business key☆67Feb 16, 2025Updated last year
- ☆34Updated this week
- AI-powered vulnerability scanner extension for Burp Suite with multi-provider support (Ollama, OpenAI, Claude, Gemini)☆210Feb 22, 2026Updated 3 weeks ago