Top #penetration-testing Tools & Software

vulscan

github

Advanced vulnerability scanning with Nmap NSE

OSCP

github

OSCP Cheat Sheet

AppInfoScanner

github

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Ethical-Hacking-Labs

github

Practical Ethical Hacking Labs 🗡🛡

Awesome-Cybersecurity-Handbooks

github

A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.

Penetration-Testing-Tools

github

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

pwndoc

github

Pentest Report Generator

Astra

github

Automated Security Testing For REST API's

FBI-tools

github

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

cloudfox

github

Automating situational awareness for cloud penetration tests.

masvs

github

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

noseyparker

github

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

Reconnoitre

github

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.