COLLECTED BY
Organization:
Internet Archive
Focused crawls are collections of frequently-updated webcrawl data from narrow (as opposed to broad or wide) web crawls, often focused on a single domain or subdomain.
The Wayback Machine - https://web.archive.org/web/20220711170358/https://github.com/topics/pentest
Here are
980 public repositories
matching this topic...
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Updated
Jul 11, 2022
Python
A collection of hacking tools, resources and references to practice ethical hacking.
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Updated
Jun 29, 2022
HTML
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Updated
Jul 3, 2022
Python
A list of resources for those interested in getting started in bug bounties
windows-kernel-exploits Windows平台提权漏洞集合
📱 objection - runtime mobile exploration
Updated
May 16, 2022
Python
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Updated
Jul 6, 2022
PowerShell
linux-kernel-exploits Linux平台提权漏洞集合
A curated list of awesome infosec courses and training resources.
Next generation web scanner
Cyber Security ALL-IN-ONE Platform
Updated
Jul 11, 2022
TypeScript
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
大型内网渗透扫描器&Cobalt Strike,Ladon9.1.4内置150个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Git All the Payloads! A collection of web attack payloads.
Updated
Apr 22, 2021
Shell
A fast, simple, recursive content discovery tool written in Rust.
Updated
Jul 11, 2022
Rust
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
Updated
Jun 27, 2022
Python
Phishing Tool & Information Collector
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Updated
Jul 11, 2022
Shell
Collection of the cheat sheets useful for pentesting
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Updated
Oct 27, 2020
Python
The ultimate WinRM shell for hacking/pentesting
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Updated
May 9, 2022
Jupyter Notebook
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
XSS'OR - Hack with JavaScript.
Updated
Dec 12, 2021
JavaScript
SSRF (Server Side Request Forgery) testing resources
Updated
Mar 9, 2022
Python
Automatic SSRF fuzzer and exploitation tool
Updated
Mar 23, 2022
Python
🌴 Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
Improve this page
Add a description, image, and links to the
pentest
topic page so that developers can more easily learn about it.
Curate this topic
Add this topic to your repo
To associate your repository with the
pentest
topic, visit your repo's landing page and select "manage topics."
Learn more
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session.
You signed out in another tab or window. Reload to refresh your session.
I testing bruteforce my opencart store.
this is body request: