gwen001 / pentest-toolsLinks
A collection of custom security tools for quick needs.
☆3,211Updated 2 years ago
Alternatives and similar repositories for pentest-tools
Users that are interested in pentest-tools are comparing it to the libraries listed below
Sorting:
- A Workflow Engine for Offensive Security☆5,601Updated last week
- HTTP parameter discovery suite.☆5,666Updated 3 months ago
- A Tool for Domain Flyovers☆5,765Updated 3 years ago
- This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.☆3,428Updated 2 years ago
- File upload vulnerability scanner and exploitation tool.☆3,204Updated 3 weeks ago
- A curated list of amazingly awesome Burp Extensions☆3,193Updated 3 months ago
- A collection of hacks and one-off scripts☆2,285Updated 2 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,797Updated 3 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,227Updated 8 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,191Updated 3 months ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,146Updated last year
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,615Updated 3 years ago
- A python script that finds endpoints in JavaScript files☆3,959Updated last year
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,470Updated last month
- ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting☆4,060Updated 2 months ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆2,846Updated 10 months ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,288Updated this week
- Fetch all the URLs that the Wayback Machine knows about for a domain☆3,930Updated last year
- Collection of methodology and test case for various web vulnerabilities.☆6,414Updated 2 months ago
- Find domains and subdomains related to a given domain☆3,298Updated 11 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,299Updated 7 months ago
- Automatic SSRF fuzzer and exploitation tool☆3,209Updated 3 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,374Updated 4 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,739Updated 11 months ago
- This script is intended to automate your reconnaissance process in an organized fashion☆1,970Updated 3 years ago
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,158Updated 2 years ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆6,316Updated this week
- Awesome XSS stuff☆4,917Updated 7 months ago
- Take a list of domains and probe for working HTTP and HTTPS servers☆3,004Updated 11 months ago
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,344Updated this week