mgeeky / Penetration Testing Tools
A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
Stars: ✭ 614
Programming Languages
powershell
5483 projects
Projects that are alternatives of or similar to Penetration Testing Tools
Pentestkit
Useful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (-24.59%)
Mutual labels: scripts, hacking, penetration-testing, tools
A Red Teamer Diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-37.79%)
Mutual labels: hacking, penetration-testing, exploit, tools
H4cker
This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Stars: ✭ 10,451 (+1602.12%)
Mutual labels: hacking, penetration-testing, exploit
Oscp Prep
my oscp prep collection
Stars: ✭ 105 (-82.9%)
Mutual labels: hacking, penetration-testing, exploit
Thc Archive
All releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (-22.8%)
Mutual labels: hacking, penetration-testing, exploit
Scripts
Scripts I use during pentest engagements.
Stars: ✭ 834 (+35.83%)
Mutual labels: hacking, penetration-testing, tools
Beef Over Wan
Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]
Stars: ✭ 82 (-86.64%)
Mutual labels: hacking, penetration-testing, exploit
Archstrike
An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
Stars: ✭ 401 (-34.69%)
Mutual labels: hacking, penetration-testing, tools
Oxidtools
200 TOOLS BY 0XID4FF0X FOR TERMUX
Stars: ✭ 143 (-76.71%)
Mutual labels: hacking, exploit, tools
Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Stars: ✭ 2,911 (+374.1%)
Mutual labels: hacking, exploit, tools
Icg Autoexploiterbot
Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥
Stars: ✭ 242 (-60.59%)
Mutual labels: hacking, penetration-testing, exploit
M3m0
M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 124 (-79.8%)
Mutual labels: hacking, penetration-testing, exploit
Awesome Hacking Resources
A collection of hacking / penetration testing resources to make you better!
Stars: ✭ 11,466 (+1767.43%)
Mutual labels: hacking, penetration-testing, exploit
Hackerpro
All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog
Stars: ✭ 474 (-22.8%)
Mutual labels: hacking, penetration-testing, tools
Appinfoscanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Stars: ✭ 424 (-30.94%)
Mutual labels: hacking, tools
Tpt Oracle
Tanel Poder's Troubleshooting & Performance Tools for Oracle Databases
Stars: ✭ 429 (-30.13%)
Mutual labels: scripts, tools
Hosthunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-30.46%)
Mutual labels: hacking, penetration-testing
Information collection handbook
Handbook of information collection for penetration testing and src
Stars: ✭ 447 (-27.2%)
Mutual labels: social-engineering, tools
A collection of my Penetration Testing Tools, Scripts, Cheatsheets
This is a collection of more than a 140+ tools, scripts, cheatsheets and other loots that I've been developing over years for Penetration Testing and IT Security audits purposes. Most of them came handy at least once during my real-world engagements.
Notice: In order to clone this repository properly - use --recurse-submodules switch:
bash$ git clone --recurse-submodules https://github.com/mgeeky/Penetration-Testing-Tools
Most of these files were initially shared on my Gists but eventually got moved into this repository.
Every time I stumbled upon a problem that could be better scripted or resolved programatically - I made effort to do just that and thus improve my technical assurance capabilities or to optimize time spent on repetitive actions during projects I've been delivering.
The collection is divided further onto following sections:
-
clouds- Tools I came up with during my cloud assessments -
file-formats- file-format related utilities, fuzzers and alike. -
linux- small bunch of Linux-based scripts and tools. -
networks- Network devices & protocols Penetration Testing toolery -
others- Others related somehow to this craftmanship -
red-teaming- Lots of toolings I've been using during my Purple/Red-Teaming engagements -
web- Web applications security assessment related utilities. -
windows- Windows goodies, scripts, exploits.
The base of these tools do not contain any customer/client related sensitive information as well as there are no engagement-specific tools developed as PoCs.
Mariusz B. / mgeeky, (@mariuszbit)
<mb [at] binary-offensive.com>
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].