Top 21 Shell Pentesting Projects

• owasp-mstg

  9 8,410 8.6 Shell

  The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  

  Project mention: What's your favorite cybersecurity documentation and why? | reddit.com/r/cybersecurity | 2022-01-16

  OWASP MASVS, MSTG, and WSTG.

• Sn1per

  1 4,929 6.7 Shell

  Attack Surface Management Platform | Sn1perSecurity LLC

  Project mention: Tools for github recon? | reddit.com/r/Pentesting | 2022-01-10

  Sniper All-in-one Pentesting tool

• SonarQube

  www.sonarqube.org

  sponsored

  Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

  

• wstg

  16 3,948 7.6 Shell

  The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

  

  Project mention: What's your favorite cybersecurity documentation and why? | reddit.com/r/cybersecurity | 2022-01-16

  OWASP MASVS, MSTG, and WSTG.

• airgeddon

  0 3,878 7.9 Shell

  This is a multi-use bash script for Linux systems to audit wireless networks.

• lscript

  1 3,097 0.0 Shell

  The LAZY script will make your life easier, and of course faster.

  Project mention: Is it possible to crack a WPS faster with more Wifi interface devices? | reddit.com/r/hacking | 2021-04-25

  I had the fastest wps cracked with this tool, it is as ez as it could get https://github.com/arismelachroinos/lscript

• linux-smart-enumeration

  0 2,007 6.4 Shell

  Linux enumeration tool for pentesting and CTFs with verbosity levels

• pwncat

  1 1,252 6.3 Shell

  pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

  Project mention: Rustcat | A Modern Netcat Alternative | reddit.com/r/Hacking_Tutorials | 2021-08-07

• OPS

  github.com/nanovms

  sponsored

  OPS - Build and Run Open Source Unikernels. Quickly and easily build and deploy open source unikernels in tens of seconds. Deploy in any language to any cloud.

  

• Sudomy

  1 1,156 3.8 Shell

  Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

  Project mention: Looking for an API like builtwith.com (let's you know what technology is behind website), but one that's opensource, or at least is more startup friendly .... | reddit.com/r/api | 2021-07-12

  That said, keep in mind that not everything is going to find its way indexed in Google. If it's subdomains you're after, you can use tools like Sublist3r or Sudomy to pull data from multiple sources (not just DNS).

• Goohak

  1 538 1.4 Shell

  Automatically Launch Google Hacking Queries Against A Target Domain

  Project mention: 1N3/Goohak - Automatically Launch Google Hacking Queries Against A Target Domain | reddit.com/r/GithubSecurityTools | 2021-04-15

• ReverseAPK

  1 522 1.4 Shell

  Quickly analyze and reverse engineer Android packages

  Project mention: ReverseAPK: Analizar rápidamente y aplicar ingeniería inversa a paquetes #Android 🧐 | reddit.com/r/u_esgeeks | 2021-10-02

• web-hacking-toolkit

  1 85 7.7 Shell

  A web hacking toolkit Docker image with GUI applications support.

  

  Project mention: web-hacking-toolkit: Herramientas de hacking web multiplataforma con soporte GUI 💯 | reddit.com/r/u_esgeeks | 2021-11-04

• archer-t2u-plus-linux

  3 59 3.1 Shell

  TP-Link Archer T2U Plus / AC600 High Gain USB Wifi Adapter Review & Driver installation Guide for various platforms.

  Project mention: Wifi card tp-link t2u plus drivers | reddit.com/r/linuxhardware | 2021-11-07

  Hello everyone recently decided to move from macosx to ubuntu 20.04 every part of my setup worked like a charm except wifi card, i've done some research about this card and officialy i'ts not linux supported. But there are a lot of tutorials how to use third party drivers like https://github.com/nlkguy/archer-t2u-plus-linux unfortunately for me after instalation of this drivers card does not work it's listed in usb devices but not listed as network device. If somebody know how to fix that i will appreciate help. I can provide logs and outputs i just have to know which command.

• webrecon

  1 46 6.6 Shell

  Automated Web Recon Shell Scripts

  Project mention: Some Web Recon Scripts for you guys :) | reddit.com/r/bugbounty | 2021-11-27

• Hack4Squad

  1 38 1.3 Shell

  :skull: A bash hacking and scanning framework.

  Project mention: #Hack4Squad: 💀 Un framework de #hacking y escaneo en Bash | reddit.com/r/u_esgeeks | 2021-04-23

• huntkit

  1 34 2.3 Shell

  Docker - Ubuntu with a bunch of PenTesting tools and wordlists

  Project mention: #HuntKit: Docker: Ubuntu con un montón de herramientas PenTesting y wordlists | reddit.com/r/u_esgeeks | 2021-03-14

• wiresec

  1 23 2.3 Shell

  📦 Wireless Attacks Tools 🕷️

  Project mention: wiresec: 📦 Herramientas para ataques inalámbricos 🕷️ | reddit.com/r/u_esgeeks | 2021-07-19

• log4j-scan-turbo

  1 20 6.8 Shell

  Multithreaded log4j vulnerability scanner using only bash! Tests all JNDI protocols, HTTP GET/POST, and 84 headers.

  Project mention: Meet log4j-scan-turbo | reddit.com/r/cybersecurity | 2021-12-17

  Sick of slow log4shell scanners? Meet log4j-scan-turbo! This multithreaded pure bash scanner uses curl + nohup to achieve 48 parallel threads while testing all jndi protocols, 84 headers, and the HTTP GET/POST methods. I recently finished building this script and it was able to scan 600 FQDNs/IPs in under an hour. Enjoy! https://github.com/ssstonebraker/log4j-scan-turbo

• Shelly

  1 18 8.0 Shell

  Automatic Reverse Shell Generator

  Project mention: Shelly: Generador automático de #ReverseShell ✅ | reddit.com/r/u_esgeeks | 2021-10-17

• WolverineFramework

  1 7 9.1 Shell

  WolverineFramework - Free, OpenSource and easy to use Cybersecurity Framework.

  Project mention: WolverineFramework: Frameworkde ciberseguridad gratuito, de código abierto y fácil de usar 🛡 | reddit.com/r/u_esgeeks | 2021-12-05

• css

  1 5 1.9 Shell

  Asymmetric encryption of the Clip Board to secure it with CSS(Copy Securely Secrets) with RSA encryption/decryption algorithms. (by Sanix-Darker)

  Project mention: Asymetric RSA encryption/decryption of your clipboard | dev.to | 2021-08-21

  To see more, this is the github project.

• CapProcess

  1 5 7.6 Shell

  A simple and useful script for capturing the processes running on a machine and some basic information about the system

  Project mention: CapProcess: Capturar los procesos que se ejecutan en una máquina 👀 | reddit.com/r/u_esgeeks | 2021-12-31

Shell Pentesting related posts

• What's your favorite cybersecurity documentation and why?
  3 projects | reddit.com/r/cybersecurity | 16 Jan 2022
• OWASP Mobile Security Testing Guide
  1 project | news.ycombinator.com | 7 Dec 2021
• Shelly: Generador automático de #ReverseShell ✅
  1 project | reddit.com/r/u_esgeeks | 17 Oct 2021
• OWASP Mobile Security Testing Guide
  1 project | news.ycombinator.com | 20 Sep 2021
• Asymetric RSA encryption/decryption of your clipboard
  1 project | dev.to | 21 Aug 2021
• We built a system like Apple’s to flag child sexual abuse material — and concluded the tech was dangerous
  4 projects | reddit.com/r/apple | 19 Aug 2021
• wiresec: 📦 Herramientas para ataques inalámbricos 🕷️
  1 project | reddit.com/r/u_esgeeks | 19 Jul 2021

Index

Sponsored

Less time debugging, more time building

Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

scoutapm.com

Get the trending Shell projects
with our weekly report!
» Subscribe «