kurogai / pentest-checklistLinks
An accurated list of things to test while pentesting
☆11Updated 4 years ago
Alternatives and similar repositories for pentest-checklist
Users that are interested in pentest-checklist are comparing it to the libraries listed below
Sorting:
- OWASP Foundation Web Respository☆36Updated 4 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated 2 years ago
- Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 a…☆25Updated 5 years ago
- Custom pentesting tools☆25Updated 4 years ago
- A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Writte…☆28Updated 3 years ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆31Updated 3 years ago
- Modular framework to exploit UPS devices☆65Updated 2 years ago
- ☆19Updated 4 years ago
- Simple C2 over the Trello API☆39Updated 2 years ago
- Bash tool used for proactive detection of malicious activity on macOS systems.☆36Updated 2 years ago
- wpscvn is a tool for pentesters, website owner to test if their websites had some vulnerable plugins or themes☆15Updated 6 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- MacroExploit use in excel sheet☆20Updated 2 years ago
- Ideaslocas Repository☆37Updated 4 years ago
- Red Team tool for exfiltrating the target organization's Google People Directory that you have access to, via Google's API.☆59Updated 4 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆19Updated 3 years ago
- S3 bucket enumerator☆30Updated 6 years ago
- Site fast fuzzing with chorme extension.☆24Updated 3 years ago
- Deploy multiple instances of Nessus in docker containers easily☆20Updated 4 years ago
- Highly configurable script for dictionary/spray attacks against online web applications.☆53Updated 2 years ago
- EnumVolcano is an open source Bash script which is used to perform automated enumeration for privilege escalation. This tool is dedicated…☆25Updated 3 years ago
- A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool☆15Updated 2 years ago
- C2Matrix Automation☆12Updated 2 years ago
- Small python script wrapper for automating hashcat commands☆38Updated 4 years ago
- Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…☆19Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆14Updated 3 years ago
- Red Team Projects with chat.openai.com.☆17Updated 2 years ago
- ☆17Updated 3 years ago
- Data exfiltration utility for testing detection capabilities☆57Updated 3 years ago
- Convert domain lists to resolved IP without duplicated, useful for strong large recon, and Bug Bounty☆14Updated 4 years ago