Awestome list of pentesting resources.
☆125Oct 19, 2023Updated 2 years ago
Alternatives and similar repositories for awesome-pentester
Users that are interested in awesome-pentester are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- List of web application security☆163Jan 27, 2017Updated 9 years ago
- Awesome Pentest Tools Collection☆1,704Apr 13, 2026Updated last month
- Collection of penetration testing tools☆82Dec 17, 2020Updated 5 years ago
- HackLiners: CyberSec/BugHunting OneLiners☆62Oct 16, 2024Updated last year
- Awesome Penetration Testing A collection of awesome penetration testing resources☆253Oct 19, 2023Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Tips, Tricks, and Scripts for Linux Post Exploitation☆37Mar 13, 2023Updated 3 years ago
- Playground for Race Condition attack☆24Mar 18, 2023Updated 3 years ago
- Simple shell script for automated domain recognition with some tools☆20Mar 9, 2019Updated 7 years ago
- A list of web application security☆6,889May 31, 2026Updated last week
- GraphQL automatic fuzzing tool☆16Jul 16, 2021Updated 4 years ago
- A collection of tutorials, CTFs, wargames, articles, and other resources for Smart Contract security.☆14Jun 4, 2022Updated 4 years ago
- Only for educational purposes☆11Jun 17, 2023Updated 2 years ago
- A collection of hacks and one-off scripts☆10Jan 18, 2021Updated 5 years ago
- ☆14Mar 8, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆10Apr 2, 2022Updated 4 years ago
- A simple script for checking anonymous login as well as bruteforcing ftp accounts.☆10Aug 4, 2023Updated 2 years ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆30Jul 21, 2024Updated last year
- ☆21Apr 30, 2021Updated 5 years ago
- Return domains in CSP headers in http response☆16Aug 17, 2021Updated 4 years ago
- The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.☆32Oct 27, 2025Updated 7 months ago
- Python WiFi is a Python 3 module that provides read and write access to a wireless network card's capabilities using the Linux Wireless E…☆12Aug 26, 2016Updated 9 years ago
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.☆61Apr 23, 2023Updated 3 years ago
- 精心制作的恶意软件分析工具和资源列表A curated list of awesome malware analysis tools and resources☆43Dec 28, 2017Updated 8 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…☆98Jun 5, 2021Updated 5 years ago
- Free Labs to Train Your Pentest / CTF Skills☆290Dec 29, 2022Updated 3 years ago
- Vulnerable web site. Used to test sentinel features.☆11Nov 18, 2016Updated 9 years ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆106Aug 6, 2022Updated 3 years ago
- Open Redirect Vulnerability Payload List☆12Feb 23, 2021Updated 5 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆126Jul 1, 2025Updated 11 months ago
- Pentest-Command☆20Nov 10, 2021Updated 4 years ago
- ☆123Mar 27, 2017Updated 9 years ago
- Sniffcon has a wide list of powerful online bug bounty tools which can be used to find security vulnerabilities.☆41Apr 10, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆2,391Oct 6, 2023Updated 2 years ago
- ☆13Mar 23, 2023Updated 3 years ago
- Fuzz for hidden proxies, vhosts, and URLs☆15Apr 1, 2026Updated 2 months ago
- Manage attack surface data on Elasticsearch☆26Nov 20, 2023Updated 2 years ago
- ☆760Aug 26, 2022Updated 3 years ago
- ☆40Jun 5, 2021Updated 5 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆35Feb 12, 2022Updated 4 years ago