cyberstars
cyberstars / purpose / pentest

Outils pour pentest

Scoped offensive engagements and assessments.

142 tools indexed

hping3

TCP/IP packet crafter and analyzer.

ScanInterceptNetworks
CGPL-2.0

httpx

Fast HTTP toolkit.

ReconScanWeb apps
GoMIT

jwt_tool

Test and exploit JWT vulnerabilities.

ExploitAnalyzeWeb apps
PythonCC-BY-SA-3.0

kube-hunter

Hunt for vulnerabilities in Kubernetes.

ScanCloud
PythonApache-2.0

ldapdomaindump

AD information dumper via LDAP.

ReconActive Directory
PythonMIT

linuxprivchecker

Linux privesc enumeration script.

ReconScanEndpoints
PythonCustom

mimikatz

Windows credential extraction.

ExploitAnalyzeEndpointsActive Directory
CCC-BY-4.0

mitmproxy

Interactive HTTPS proxy.

InterceptAnalyzeWeb appsNetworks
PythonMIT

ntlm_theft

Generate NTLMv2 hash theft files.

InterceptExploitActive DirectoryEndpoints
PythonMIT

pspy

Spy on Linux processes without root.

MonitorReconEndpoints
GoMIT

pypykatz

Mimikatz in pure Python.

AnalyzeCrackActive DirectoryEndpoints
PythonMIT

r2frida

Radare2 plug-in for Frida.

AnalyzeInterceptMobile appsBinaries
CMIT

reGeorg

SOCKS proxy through a web shell.

InterceptExploitWeb appsNetworks
PythonMIT

smali / baksmali

Android Dalvik assembler / disassembler.

AnalyzeMobile appsBinaries
JavaBSD-3-Clause

sqlmap

Automatic SQL injection and database takeover.

ExploitScanWeb apps
PythonGPL-2.0

ssh-audit

SSH server and client config auditor.

ScanHardenNetworksEndpoints
PythonMIT

tcpdump

Command-line packet capture.

InterceptAnalyzeNetworks
CBSD-3-Clause

testssl.sh

Test TLS/SSL on any port.

ScanAnalyzeWeb appsNetworks
ShellGPL-2.0

theHarvester

E-mail and subdomain harvester.

ReconWeb appsNetworks
PythonGPL-2.0

w3af

Web application attack and audit framework.

ScanExploitWeb apps
PythonGPL-2.0

wafw00f

WAF fingerprinting.

ReconScanWeb apps
PythonBSD-3-Clause

ysoserial

Java deserialization payload generator.

ExploitWeb appsBinaries
JavaMIT