Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.
☆1,971Apr 14, 2026Updated this week
Alternatives and similar repositories for mentalist
Users that are interested in mentalist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- RSMangler will take a wordlist and perform various manipulations on it similar to those done by John the Ripper with a few extras.☆232Jul 24, 2019Updated 6 years ago
- Common User Passwords Profiler (CUPP)☆5,871Dec 26, 2025Updated 3 months ago
- 密码生成 flexible and scriptable password dictionary generator which can support brute-force、combination、complex rule mode etc...☆168Jun 11, 2025Updated 10 months ago
- Fetch, install and search wordlist archives from websites and torrent peers.☆532Apr 17, 2024Updated 2 years ago
- A tool for automating cracking methodologies through Hashcat from the TrustedSec team.☆1,821Updated this week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Bull's Eye Wordlist Generator - Does your password rely on predictable patterns of accessible info?☆420Jun 23, 2021Updated 4 years ago
- CeWL is a Custom Word List Generator☆2,645Updated this week
- A swiss army knife for pentesting networks☆9,124Dec 6, 2023Updated 2 years ago
- Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren…☆9,243Oct 4, 2023Updated 2 years ago
- Username tools for penetration testing☆1,363Sep 20, 2024Updated last year
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,685Jan 5, 2026Updated 3 months ago
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,561Oct 17, 2022Updated 3 years ago
- Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords☆1,418Jul 13, 2025Updated 9 months ago
- Remove duplicates from MASSIVE wordlist, without sorting it (for dictionary-based password cracking)☆967Nov 4, 2025Updated 5 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,942Nov 19, 2025Updated 5 months ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆6,421Jan 26, 2026Updated 2 months ago
- SMBMap is a handy SMB enumeration tool☆2,032Jan 6, 2026Updated 3 months ago
- JAWS - Just Another Windows (Enum) Script☆1,939Apr 19, 2021Updated 5 years ago
- A Tool for Domain Flyovers☆5,923May 22, 2022Updated 3 years ago
- A powerful and useful hacker dictionary builder for a brute-force attack☆3,594Dec 5, 2024Updated last year
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,219Aug 7, 2025Updated 8 months ago
- Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities☆1,666Nov 28, 2020Updated 5 years ago
- The ultimate WinRM shell for hacking/pentesting☆5,339Mar 10, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Automation for internal Windows Penetrationtest / AD-Security☆3,653Aug 28, 2025Updated 7 months ago
- Trying to tame the three-headed dog.☆4,971Nov 14, 2025Updated 5 months ago
- One rule to crack all passwords. or atleast we hope so.☆1,615Dec 9, 2021Updated 4 years ago
- SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, Supe…☆1,317Nov 22, 2022Updated 3 years ago
- A Python based ingestor for BloodHound☆2,373Oct 24, 2025Updated 5 months ago
- Domain Password Audit Tool for Pentesters☆1,029Dec 24, 2025Updated 3 months ago
- Impacket is a collection of Python classes for working with network protocols.☆15,631Apr 9, 2026Updated last week
- PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.☆2,001Oct 10, 2018Updated 7 years ago
- Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credential…☆2,402Apr 13, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Attack Surface Management Platform☆9,673Feb 15, 2026Updated 2 months ago
- Six Degrees of Domain Admin☆10,537Mar 2, 2026Updated last month
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,868Apr 25, 2024Updated last year
- Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.☆2,479Sep 22, 2024Updated last year
- Mimikatz implementation in pure Python��☆3,291Apr 9, 2026Updated last week
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆2,463Mar 2, 2026Updated last month
- Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…☆3,905Jan 24, 2024Updated 2 years ago