Nmap
—The classic network mapper and port scanner.
ScanReconNetworksEndpoints
cyberstars / purpose / pentest
Outils pour pentest
Scoped offensive engagements and assessments.
142 tools indexed
Template-based vulnerability scanner.
ScanWeb appsNetworks
In-depth attack surface mapping.
ReconScanWeb appsNetworks
Modern intentionally vulnerable web app.
AutomateWeb apps
Automated pentest + vuln scanner.
ScanExploitWeb appsNetworks
Open-source web app scanner.
ScanInterceptWeb apps
Completely ridiculous API (training target).
AutomateWeb apps
Runtime mobile exploration via Frida.
AnalyzeInterceptMobile apps
PTF
—Pentest Testers Framework installer.
AutomateEndpoints
Pacu
—Open-source AWS exploitation framework.
ExploitReconCloud
Burp extension for parameter discovery.
ReconFuzzWeb apps
Active Directory health audit.
ScanHardenActive Directory
Offline WPS pin brute-force.
CrackWireless
PowerShell post-exploitation framework.
ExploitReconActive DirectoryEndpoints
MitM relay sidekick for AD.
InterceptExploitActive DirectoryNetworks
PowerShell AD post-exploitation.
ExploitReconActive DirectoryEndpoints
QARK
—Quick Android Review Kit.
ScanAnalyzeMobile apps
WPS pin brute-force attack.
CrackExploitWireless
Full-featured reconnaissance framework.
ReconAutomateWeb appsNetworks
LLMNR, NBT-NS and MDNS poisoner.
InterceptExploitActive DirectoryNetworks
C# Kerberos abuse toolkit.
ExploitCrackActive Directory
Abuse Exchange services from the outside.
ExploitInterceptActive DirectoryEndpoints
Modern port scanner in Rust.
ScanReconNetworks
Find misconfigured object storage buckets.
ScanReconCloud