Compilation of scripts/tools (made by me or not) that help me with Pentest and Bug Bounty.
☆25Dec 22, 2025Updated 6 months ago
Alternatives and similar repositories for pentest-scripts
Users that are interested in pentest-scripts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tools used for Pentesting☆22Apr 21, 2023Updated 3 years ago
- At this repo you can find any tools, tricks or templates for general penetration testing assesment☆16Apr 27, 2024Updated 2 years ago
- This repository contains fully disclosed accepted reports for the null Ahmedabad's Bug Bounty CTF.☆10Oct 31, 2023Updated 2 years ago
- Repository to store all audits from public contests, bug bounty programmes☆11Apr 23, 2024Updated 2 years ago
- This is a lazy enumeration script made to make bug bounty enum & pentest flyovers easy as cake!☆13Jun 13, 2020Updated 6 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Auto Web Vulnerability Scanning Framework☆11Feb 3, 2016Updated 10 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and a…☆32Mar 21, 2023Updated 3 years ago
- My public findings/reports from decentralized audits, select bug bounty programs and engagements☆14Jun 7, 2026Updated 3 weeks ago
- We all know about the famous spyse.com this python3 scripts scrounges subdomains without the api from spyse cybersecurity search engine☆11May 13, 2020Updated 6 years ago
- Command List for Hashcat and default keyspaces.☆17Feb 13, 2020Updated 6 years ago
- Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios☆13Jan 17, 2018Updated 8 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- A collection of scripts for bug-bounty related stuff☆39Sep 4, 2020Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Use Python to manipulate Charles session files and send HTTP requests.☆13Dec 8, 2022Updated 3 years ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆38Nov 3, 2025Updated 7 months ago
- OsintifyX: Powerful Open-source OSINT tool for extracting valuable information from Instagram profiles. OSINT: Instagram Forensics Tool☆11Feb 19, 2024Updated 2 years ago
- Creating them Golden Tickets☆15Jun 14, 2026Updated 2 weeks ago
- ☆11Jan 23, 2025Updated last year
- ATT&CK Models of the Threat Actor "Phineas Fisher"☆22Apr 30, 2020Updated 6 years ago
- This repository has moved to erikaheidi/sponsoropensource☆13May 7, 2023Updated 3 years ago
- List of awesome starred repositories☆16Updated this week
- strong-frida patches☆26Jan 17, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Shellcode Loader | xss.is☆13Jul 26, 2024Updated last year
- An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.☆13Jan 5, 2021Updated 5 years ago
- This repository contains Bug Bounty writeups☆103Jun 23, 2026Updated last week
- ☆38Oct 3, 2023Updated 2 years ago
- Your bloodhound for hidden info in those JS files.☆17May 13, 2024Updated 2 years ago
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆15Mar 11, 2024Updated 2 years ago
- ☆11Dec 22, 2023Updated 2 years ago
- Repository with quick triggers to help during Pentest in an Active Directory environment.☆50Jul 28, 2025Updated 11 months ago
- ☆46Apr 14, 2019Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Demo of various ways to exploit post based reflected XSS☆18Jul 6, 2023Updated 2 years ago
- Ansible build for Afl++ Frida-Mode☆25May 11, 2026Updated last month
- Some Useful Tricks for Pentest Android and iOS Apps☆176Nov 10, 2025Updated 7 months ago
- 在线安软识别☆12Aug 6, 2025Updated 10 months ago
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- Nexus of Android banking Trojans☆14Oct 11, 2023Updated 2 years ago
- Used to get NTLMv2 Hashes from SMB☆27Oct 24, 2024Updated last year