Go Pentesting

Open-source Go projects categorized as Pentesting | Edit details

Top 16 Go Pentesting Projects

  • ffuf

    Fast web fuzzer written in Go

    Project mention: ffuf/ffuf | reddit.com/r/RedSec | 2021-05-03
  • gobuster

    Directory/File, DNS and VHost busting tool written in Go

    Project mention: I need motivation | reddit.com/r/cpp_questions | 2022-01-05
  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • hetty

    Hetty is an HTTP toolkit for security research.

  • Cameradar

    Cameradar hacks its way into RTSP videosurveillance cameras

  • pspy

    Monitor linux processes without root permissions

    Project mention: What are some underrated (legal) tools that you have used during the OSCP that no one talks about or knows? | reddit.com/r/oscp | 2021-07-21


  • ruler

    A tool to abuse Exchange services (by sensepost)

    Project mention: How do you verify that legacy auth is actually disabled? | reddit.com/r/Office365 | 2021-12-17
  • ksubdomain


  • SonarLint

    Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.

  • gitjacker

    🔪 :octocat: Leak git repositories from misconfigured websites

  • Stowaway

    👻Stowaway -- Multi-hop Proxy Tool for pentesters

    Project mention: Stowaway – Multi-hop Proxy Tool for pentesters | news.ycombinator.com | 2021-09-30
  • mosint

    An automated e-mail OSINT tool

    Project mention: mosint: Una herramienta #OSINT automatizada para el correo electrónico 📧 | reddit.com/r/u_esgeeks | 2021-10-27
  • scilla

    Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

    Project mention: Scilla v1.0 released! | dev.to | 2021-04-18

    Just released the first version of Scilla. You can find it here: https://github.com/edoardottt/scilla. It's a CLI-based information gathering tool. It performs enumeration on DNS, subdomains, directories, files and ports. It's built with Go leveraging its go routines.

  • ligolo-ng

    An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

    Project mention: Ligolo-ng: IP tunneling via tun interface | news.ycombinator.com | 2021-08-25
  • asnip

    ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

    Project mention: harleo/asnip - ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight | reddit.com/r/GithubSecurityTools | 2021-05-11
  • reverse_ssh

    SSH based reverse shell

    Project mention: Show HN: Reverse SSH – Multiplexed Reverse Shell Catcher That Uses SSH | news.ycombinator.com | 2022-01-18
  • KoiPhish

    A simple yet beautiful phishing proxy.

    Project mention: Facebook hacker beat my 2FA, bricked my Oculus, and hit the company credit card | news.ycombinator.com | 2021-08-20

    Old school phishing is the most common MFA bypass.

    Here is an example how it works:


  • hackenv

    Manage and access your Kali Linux or Parrot Security VM from the terminal (SSH support + file sharing, especially convenient during CTFs, Hack The Box, etc.) :rocket::wrench:

    Project mention: hackenv: A tool to manage and access a VM running Kali Linux or Parrot Security from the terminal | reddit.com/r/hacking | 2021-07-02
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-01-18.

Go Pentesting related posts


What are some of the best open-source Pentesting projects in Go? This list will help you:

Project Stars
1 ffuf 5,923
2 gobuster 5,478
3 hetty 3,652
4 Cameradar 2,811
5 pspy 2,414
6 ruler 1,696
7 ksubdomain 1,402
8 gitjacker 1,359
9 Stowaway 1,128
10 mosint 387
11 scilla 299
12 ligolo-ng 242
13 asnip 183
14 reverse_ssh 41
15 KoiPhish 40
16 hackenv 7
Find remote jobs at our new job board 99remotejobs.com. There are 30 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
OPS - Build and Run Open Source Unikernels
Quickly and easily build and deploy open source unikernels in tens of seconds. Deploy in any language to any cloud.