cyberstars
cyberstars / purpose / pentest

Tools for pentest

Scoped offensive engagements and assessments.

142 tools indexed

Frida

Dynamic instrumentation for app analysis.

AnalyzeInterceptMobile appsBinaries
CwxWindows

GoCrack

Mandiant's password-cracking frontend.

CrackAutomateEndpointsActive Directory
GoApache-2.0

Gobuster

Directory, DNS and vhost brute-forcer.

FuzzReconWeb appsNetworks
GoApache-2.0

Gopherus

Generate gopher:// SSRF payloads.

ExploitWeb apps
PythonMIT

Gophish

Open-source phishing toolkit.

AutomateExploitEndpointsWeb apps
GoMIT

GraphRunner

Microsoft Graph post-exploitation toolset.

ExploitReconCloud
PowerShellBSD-3-Clause

Hetty

Open-source HTTP toolkit for sec research.

InterceptScanWeb apps
GoMIT

HostHunter

OSINT-driven hostname discovery.

ReconWeb appsNetworks
PythonApache-2.0

Impacket

Python toolkit for Windows protocols.

ExploitInterceptActive DirectoryNetworks
PythonApache-1.1

JADX

Dex-to-Java decompiler.

AnalyzeMobile appsBinaries
JavaApache-2.0

John the Ripper

CPU-based password cracker.

CrackEndpointsActive Directory
CGPL-2.0

Katana

Next-generation crawling framework.

ReconScanWeb apps
GoMIT

Kerbrute

Kerberos username enumeration and brute-forcing.

ReconCrackActive Directory
GoApache-2.0

LinPEAS

Linux privilege-escalation enumerator.

ReconScanEndpoints
BashMIT

Malimite

iOS and macOS decompiler.

AnalyzeMobile appsBinaries
JavaApache-2.0

Masscan

Mass IP port scanner.

ScanReconNetworks
CAGPL-3.0

Metasploit Framework

Exploit development and delivery platform.

ExploitAutomateNetworksEndpoints
RubyBSD-3-Clause

MobSF

Mobile app security testing.

ScanAnalyzeMobile apps
PythonGPL-3.0

Naabu

Fast port scanner in Go.

ScanReconNetworks
GoMIT

NetExec

Network service exploitation.

ExploitScanActive DirectoryNetworks
PythonBSD-2-Clause

Nexmon

WiFi firmware patches: monitor mode + injection.

InterceptScanWireless
CGPL-3.0

Nikto

Classic web server scanner.

ScanWeb apps
PerlGPL-2.0