Compilation of scripts/tools (made by me or not) that help me with Pentest and Bug Bounty.
☆26Dec 22, 2025Updated 2 months ago
Alternatives and similar repositories for pentest-scripts
Users that are interested in pentest-scripts are comparing it to the libraries listed below
Sorting:
- Tool for advanced mining for content on Github☆29Nov 11, 2025Updated 4 months ago
- Tools used for Pentesting☆22Apr 21, 2023Updated 2 years ago
- ☆13Apr 21, 2021Updated 4 years ago
- At this repo you can find any tools, tricks or templates for general penetration testing assesment☆15Apr 27, 2024Updated last year
- This repository contains fully disclosed accepted reports for the null Ahmedabad's Bug Bounty CTF.☆10Oct 31, 2023Updated 2 years ago
- Repository to store all audits from public contests, bug bounty programmes☆11Apr 23, 2024Updated last year
- Auto Web Vulnerability Scanning Framework☆10Feb 3, 2016Updated 10 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- pugrecon is a bash script for automatic recon of common vulnerabilities, misconfigurations and files on domains.☆25Mar 18, 2021Updated 5 years ago
- Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and a…☆31Mar 21, 2023Updated 3 years ago
- My public findings/reports from decentralized audits, select bug bounty programs and engagements☆13Mar 1, 2026Updated 2 weeks ago
- We all know about the famous spyse.com this python3 scripts scrounges subdomains without the api from spyse cybersecurity search engine☆10May 13, 2020Updated 5 years ago
- Command List for Hashcat and default keyspaces.☆17Feb 13, 2020Updated 6 years ago
- Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios☆13Jan 17, 2018Updated 8 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- A program to translate OWL 2 Ontologies to LPG graphs☆13Nov 16, 2022Updated 3 years ago
- Use Python to manipulate Charles session files and send HTTP requests.☆13Dec 8, 2022Updated 3 years ago
- Automatically exported from code.google.com/p/lfimap☆16Mar 5, 2016Updated 10 years ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆36Nov 3, 2025Updated 4 months ago
- A powerful pentesting tool for proactive detection and exploitation of dependency confusion vulnerabilities in Node.js projects. Enhance …☆14Jul 25, 2023Updated 2 years ago
- a tool that gets all paths at robots.txt and opens it in the browser.☆14Aug 2, 2019Updated 6 years ago
- OsintifyX: Powerful Open-source OSINT tool for extracting valuable information from Instagram profiles. OSINT: Instagram Forensics Tool☆11Feb 19, 2024Updated 2 years ago
- ☆11Jan 23, 2025Updated last year
- List of awesome starred repositories☆13Mar 13, 2026Updated last week
- A crawler that uses OpenWPM.☆12Dec 26, 2021Updated 4 years ago
- This repository contains Bug Bounty writeups☆73Updated this week
- strong-frida patches☆25Jan 17, 2023Updated 3 years ago
- ☆17Apr 9, 2024Updated last year
- An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.☆13Jan 5, 2021Updated 5 years ago
- Collection of antivirus bypass techniques☆13Nov 20, 2023Updated 2 years ago
- ☆37Oct 3, 2023Updated 2 years ago
- A tool for finding CNAME of subdomains and checking clickjacking vulnerability.☆13Jun 15, 2025Updated 9 months ago
- This repository is made to create your own pentesting reports based on the following templates.☆27Feb 5, 2025Updated last year
- A CLI for identifying potential Personally Identifiable Information in datasets.☆14Apr 9, 2019Updated 6 years ago
- Ransomware Simulator for Red/Blue teams to test their defences.☆19Apr 4, 2022Updated 3 years ago
- Your bloodhound for hidden info in those JS files.☆17May 13, 2024Updated last year
- Website com as cartas do Masters of Pwnage, para que qualquer um possa montar um deck jogável.☆15May 14, 2025Updated 10 months ago
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆15Mar 11, 2024Updated 2 years ago
- Black box pen-testing and web based CTFs☆17Mar 6, 2023Updated 3 years ago