A collection of pentesting resources, tools, books, and libraries.
☆26Apr 27, 2015Updated 11 years ago
Alternatives and similar repositories for pentest_resources
Users that are interested in pentest_resources are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A cheatsheet of tools and commands that I use to pentest Active Directory.☆54Mar 26, 2022Updated 4 years ago
- Websploit is a high level MITM framework☆149Apr 22, 2022Updated 4 years ago
- ☆13May 9, 2017Updated 9 years ago
- Broken web app intentionally built with pentesting obstacles☆16Jun 21, 2019Updated 6 years ago
- A tool for searching common variations of a human name☆53Dec 13, 2025Updated 6 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆38Oct 3, 2023Updated 2 years ago
- an image bot that exploits png transparency quirks.☆10May 24, 2018Updated 8 years ago
- An advanced scanner for exposed secrets in web pages, APIs, and source code.☆13Apr 22, 2025Updated last year
- Cybersecurity ethical hacking library and app☆17Jan 12, 2021Updated 5 years ago
- Multithreaded lz4 for Android☆16Apr 3, 2016Updated 10 years ago
- This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks☆19Mar 30, 2015Updated 11 years ago
- PHP synthetic test cases generator☆10Oct 15, 2023Updated 2 years ago
- exfiltration/infiltration toolkit☆23Dec 20, 2023Updated 2 years ago
- Fault injection library☆23Dec 2, 2014Updated 11 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Repository to host scripts discussed in https://www.notsosecure.com/crafting-way-json-web-tokens/☆15Aug 4, 2018Updated 7 years ago
- NoBlindi is a command-line tool for exploiting blind NoSQL injection vulnerabilities to recover passwords in web applications.☆28Nov 12, 2023Updated 2 years ago
- Demo server for testing Java deserialization payloads☆15Sep 18, 2016Updated 9 years ago
- A Jenkins Pentest/Security Toolkit written in Python☆15Sep 18, 2017Updated 8 years ago
- This is the vulnerable "proxy" I used on this article: http://resources.infosecinstitute.com/the-ssrf-vulnerability/ . A simple, non-vali…☆14Sep 20, 2016Updated 9 years ago
- These are various simple python scripts that can be used to aid pentesters. None of these are overly complex, but should serve as a grea…☆24May 8, 2018Updated 8 years ago
- A set of vulnerable PHP scripts used to test w3af's vulnerability detection features.☆28Apr 15, 2015Updated 11 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Wordpress Two-factor Authentication Brute-forcer☆19Oct 22, 2019Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Python3 source code and hack code.☆16Dec 19, 2022Updated 3 years ago
- Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices☆18Oct 13, 2016Updated 9 years ago
- Postfix SMTP Smuggling - Expect Script POC☆23Dec 26, 2023Updated 2 years ago
- Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.☆14Aug 12, 2021Updated 4 years ago
- DFSCoerce exe revisited version with custom authentication☆43Jan 13, 2024Updated 2 years ago
- A collection of published exploits and proof-of-concept code.☆20Dec 19, 2017Updated 8 years ago
- An automated Python + Ruby based XXE Exploiter (GUI + CLI)☆19Aug 2, 2016Updated 9 years ago
- Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains …☆10Oct 17, 2023Updated 2 years ago
- ☆11Jun 26, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Find potential XSS vulnerabilities☆26Dec 6, 2021Updated 4 years ago
- A simple threaded password bruteforce tool against Wordpress installations with XML-RPC enabled. The tool exploits the system.multicall f…☆19Dec 31, 2015Updated 10 years ago
- A configurable XPath/XML injection testbed☆33Jul 19, 2013Updated 12 years ago
- Certificate authority fixtures for Go tests☆14Oct 4, 2021Updated 4 years ago
- AES 256 CBC encryption and Base64 encoding with CryptoAPI and C☆22Apr 7, 2016Updated 10 years ago
- hacklib - pentesting, port scanning, and logging in anywhere with Python☆100Aug 26, 2019Updated 6 years ago
- java unserialize vulnerability payload☆21Apr 20, 2019Updated 7 years ago