gwen001 / pentest-tools
A collection of custom security tools for quick needs.
☆3,199Updated 2 years ago
Alternatives and similar repositories for pentest-tools:
Users that are interested in pentest-tools are comparing it to the libraries listed below
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,211Updated 7 months ago
- HTTP parameter discovery suite.☆5,612Updated 2 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,147Updated 3 months ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,124Updated last year
- A python script that finds endpoints in JavaScript files☆3,934Updated last year
- A curated list of amazingly awesome Burp Extensions☆3,166Updated 2 months ago
- This script is intended to automate your reconnaissance process in an organized fashion☆1,961Updated 3 years ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,700Updated 4 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,477Updated 8 months ago
- A collection of hacks and one-off scripts☆2,276Updated last month
- File upload vulnerability scanner and exploitation tool.☆3,196Updated 2 years ago
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,602Updated 3 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆2,828Updated 9 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,782Updated 3 years ago
- ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting☆4,042Updated last month
- A Workflow Engine for Offensive Security☆5,580Updated 2 weeks ago
- Awesome XSS stuff☆4,910Updated 6 months ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,239Updated this week
- Find domains and subdomains related to a given domain☆3,256Updated 11 months ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,793Updated last week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,450Updated 2 weeks ago
- Take a list of domains and probe for working HTTP and HTTPS servers☆2,990Updated 10 months ago
- A Tool for Domain Flyovers☆5,755Updated 2 years ago
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.☆2,374Updated 9 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,336Updated 4 months ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,629Updated 6 months ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆3,885Updated 9 months ago
- BBT - Bug Bounty Tools (examples💡)☆1,800Updated last year
- The Swiss Army knife for automated Web Application Testing☆2,231Updated last year
- Notes about attacking Jenkins servers☆2,052Updated 9 months ago