Herramientas y utilidades de pentesting, ethical hacking y seguridad ofensiva.
☆41May 26, 2025Updated 10 months ago
Alternatives and similar repositories for pentesting
Users that are interested in pentesting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CVE-2024-0044☆12Aug 24, 2024Updated last year
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Feb 3, 2024Updated 2 years ago
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆15Jan 20, 2021Updated 5 years ago
- Beelzebub all in one Hacking Tools, Shell finder, Zone-H Grabber, ReverseIP, SMTP Finder, XMLRPC BF and more☆45May 27, 2025Updated 10 months ago
- ☆16Jun 26, 2025Updated 9 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Simple shellcode injection in Nim encrypted in XOR☆22Aug 21, 2023Updated 2 years ago
- FETB : Take URL of File For Analysis using File + ExifTool + Binwalk Commands☆20Feb 2, 2021Updated 5 years ago
- Attacking indiscriminately every header, cookie, GET and POST parameter with blind fury.☆13Sep 25, 2025Updated 6 months ago
- A script that gives you the credentials of a Pterodactyl panel vulnerable to CVE-2025-49132☆17Jun 22, 2025Updated 9 months ago
- Mimikatz embedded as classes☆28Oct 25, 2021Updated 4 years ago
- Subdomain Enumeration using Securitytrails API☆27Mar 18, 2023Updated 3 years ago
- Pentest Checklists☆21Aug 23, 2020Updated 5 years ago
- The project aims at building a Scan-Time Crypter that can assist a malware in bypassing antivirus software. The Crypter will open the mal…☆17Feb 23, 2021Updated 5 years ago
- KillDefender的实现☆12Feb 28, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- UAC-ByPass utils☆11Jan 28, 2022Updated 4 years ago
- 在原版nps的基础上,增加了nps探测,以及对应的利用方式(如获取cookie,页面等),进行一些简单的二开。未经过大量测试,可能存在bug。☆21Aug 5, 2025Updated 8 months ago
- POC for CVE-2020-9484☆13Feb 10, 2021Updated 5 years ago
- ☆15Jan 26, 2023Updated 3 years ago
- Scrape files for sensitive information, and generate an interactive HTML report. Based on Rabin2.☆17Feb 25, 2026Updated last month
- 最新漏洞收集、复现、漏洞环境☆10Mar 21, 2019Updated 7 years ago
- 利用wasm静态免杀�的demo☆16Apr 11, 2024Updated 2 years ago
- Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.☆39Updated this week
- This repository contains a Python script to automate the process of testing for a vulnerability known as Text4Shell, referenced under the…☆14Jun 27, 2023Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- CVE-2021-41773 | CVE-2021-42013 Exploit Tool (Apache/2.4.49-2.4.50)☆10Apr 8, 2022Updated 4 years ago
- ☆13Nov 7, 2023Updated 2 years ago
- SAOL wordlist 2018☆13Dec 8, 2022Updated 3 years ago
- A reconnaissance tool for ethical hackers written in RUST☆21Apr 8, 2024Updated 2 years ago
- Apache HTTP-Server 2.4.49-2.4.50 Path Traversal & Remote Code Execution PoC (CVE-2021-41773 & CVE-2021-42013)☆14Aug 22, 2025Updated 7 months ago
- A project for building Linux && IoT Malware for fun and no-profit☆17Jan 24, 2025Updated last year
- Program for fuzzing parameters web application☆15Apr 14, 2025Updated last year
- 免杀shellcode加载器☆18Mar 4, 2021Updated 5 years ago
- My notes of Day1 Day2 will be posted here as journey☆17Jan 6, 2021Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Pentesting Apache Tomcat 101☆14Apr 4, 2023Updated 3 years ago
- A PoC exploit for CVE-2023-23752 - Joomla Improper Access Check in Versions 4.0.0 through 4.2.7☆16Feb 1, 2026Updated 2 months ago
- SPIP BigUp Plugin Unauthenticated RCE☆16Sep 7, 2024Updated last year
- cve-2017-5638 Vulnerable site sample☆14Apr 4, 2017Updated 9 years ago
- An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…☆12Feb 16, 2021Updated 5 years ago
- Tactics, Techniques, and Procedures☆28Jan 20, 2025Updated last year
- Tools that I've created/used during CTP-OSCE☆10Jun 17, 2019Updated 6 years ago