Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...
☆1,641Mar 1, 2026Updated last month
Alternatives and similar repositories for PentestingEverything
Users that are interested in PentestingEverything are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,830Updated this week
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,464Feb 10, 2024Updated 2 years ago
- A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for id…☆1,791Sep 11, 2025Updated 7 months ago
- API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).☆238Jan 25, 2026Updated 2 months ago
- OSWE, OSEP, OSED, OSEE☆3,798Jan 2, 2026Updated 3 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.☆610Mar 14, 2026Updated last month
- SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…☆111Aug 21, 2025Updated 7 months ago
- Complete Roadmap for Penetration Testing☆276Sep 16, 2024Updated last year
- Search for all leaked keys/secrets using one regex! bugbounty☆224Mar 29, 2025Updated last year
- My Notes about Penetration Testing☆734Jan 17, 2026Updated 2 months ago
- ☆13Oct 24, 2024Updated last year
- All about bug bounty (bypasses, payloads, and etc)☆6,689Sep 8, 2023Updated 2 years ago
- Tools and Techniques for Red Team / Penetration Testing☆8,641Mar 18, 2025Updated last year
- PEN-300 collection to help you on your exam.☆699Feb 25, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- AI-powered ffuf wrapper☆711Dec 4, 2025Updated 4 months ago
- ☆692Mar 23, 2026Updated 3 weeks ago
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- An insane list of all dorks taken from everywhere from various different sources.☆796Dec 29, 2025Updated 3 months ago
- Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, d…☆410Oct 20, 2024Updated last year
- A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified P…☆443Jun 23, 2025Updated 9 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆266Mar 22, 2026Updated 3 weeks ago
- OSCP Cheat Sheet☆3,689Apr 7, 2026Updated last week
- how to look for Leaked Credentials !☆1,039May 6, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- HackTheBox Certified Penetration Tester Specialist Cheatsheet☆726Jul 10, 2024Updated last year
- Cybersecurity oriented awesome list☆3,548Apr 6, 2026Updated last week
- Penetration-List: A comprehensive resource for testers, covering all types of vulnerabilities and materials used in Penetration Testing. …☆888Dec 28, 2025Updated 3 months ago
- GoogleDorker - Unleash the power of Google dorking for ethical hackers with custom search precision.☆273Dec 23, 2024Updated last year
- ☆123Dec 17, 2024Updated last year
- This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structur…☆8,818Mar 25, 2026Updated 2 weeks ago
- A curated list of various bug bounty tools☆5,906Updated this week
- This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 …☆2,494Mar 14, 2026Updated last month
- ☆1,718Aug 19, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Collection of methodology and test case for various web vulnerabilities.☆7,078Jun 25, 2025Updated 9 months ago
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆5,632Aug 6, 2023Updated 2 years ago
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆191Mar 18, 2025Updated last year
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆502Jun 28, 2025Updated 9 months ago
- Top disclosed reports from HackerOne☆5,657Mar 30, 2026Updated 2 weeks ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆498Feb 13, 2023Updated 3 years ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆207May 22, 2025Updated 10 months ago