The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 20 Shell Penetration Testing Projects
-
-
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
-
-
Project mention: New EMBA firmware analyzer release - EMBA v1.2.3 - R.I.P. Binwalk | /r/netsec | 2023-05-11
-
pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE) (by cytopia)
-
GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
-
awesome-bbht
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
-
-
Reconky-Automated_Bash_Script
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
-
-
-
cd
CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
-
-
-
-
Penetration-Testing-Helper-Scripts
Some scripts to improve the Quality of Life for a penetration tester when working
For the OSCP exam I used some of the bash scripts from this repository. The one for reverse shells would automatically fetch the vpn IP address and add it to the reverse shell commands, which saved time during the exam
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Shell Penetration Testing related posts
- Web App Pentesting Career
- Git branching for small teams
- checkbox for what to do when trying to hack a website?
- What's your favorite cybersecurity documentation and why?
- Bad Pods: Kubernetes Pod Privilege Escalation
- [Security] Escaping a docker container through the web shell
- #HuntKit: Docker: Ubuntu con un montón de herramientas PenTesting y wordlists
-
A note from our sponsor - WorkOS
workos.com | 17 Apr 2024
Index
What are some of the best open-source Penetration Testing projects in Shell? This list will help you:
Project | Stars | |
---|---|---|
1 | Sn1per | 7,501 |
2 | reconftw | 5,219 |
3 | lscript | 3,844 |
4 | AllHackingTools | 2,496 |
5 | EMBA | 2,400 |
6 | pwncat | 1,696 |
7 | GooFuzz | 1,216 |
8 | htshells | 975 |
9 | Garud | 750 |
10 | awesome-bbht | 540 |
11 | badPods | 529 |
12 | Reconky-Automated_Bash_Script | 188 |
13 | huntkit | 161 |
14 | stegextract | 107 |
15 | cd | 49 |
16 | webrecon | 49 |
17 | NWPentestUtils | 7 |
18 | aegis | 5 |
19 | Penetration-Testing-Helper-Scripts | 3 |
20 | project-macsec | 1 |