Top 18 Shell Pentesting Projects
-
owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
-
Project mention: WebMap : A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing | reddit.com/r/HowToHack | 2021-01-04
This is awesome you have made your own tool a feat I have yet to do. If you are looking for pen-test automation you should check out Sn1per I love this tool.
-
Scout APM
Scout APM: A developer's best friend. Try free for 14-days. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
-
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Project mention: I'm preparing for the interview and I've curated a list of resources that might be helpful for you also. | reddit.com/r/netsecstudents | 2021-11-29 -
Project mention: v1s1t0r1sh3r3/airgeddon - This is a multi-use bash script for Linux systems to audit wireless networks. | reddit.com/r/GithubSecurityTools | 2021-01-12
-
Project mention: Is it possible to crack a WPS faster with more Wifi interface devices? | reddit.com/r/hacking | 2021-04-25
I had the fastest wps cracked with this tool, it is as ez as it could get https://github.com/arismelachroinos/lscript
-
Project mention: diego-treitos/linux-smart-enumeration - Linux enumeration tool for pentesting and CTFs with verbosity levels | reddit.com/r/GithubSecurityTools | 2020-12-24
-
pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
Project mention: Rustcat | A Modern Netcat Alternative | reddit.com/r/Hacking_Tutorials | 2021-08-07 -
-
Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Project mention: Looking for an API like builtwith.com (let's you know what technology is behind website), but one that's opensource, or at least is more startup friendly .... | reddit.com/r/api | 2021-07-12That said, keep in mind that not everything is going to find its way indexed in Google. If it's subdomains you're after, you can use tools like Sublist3r or Sudomy to pull data from multiple sources (not just DNS).
-
Project mention: 1N3/Goohak - Automatically Launch Google Hacking Queries Against A Target Domain | reddit.com/r/GithubSecurityTools | 2021-04-15
-
Project mention: ReverseAPK: Analizar rápidamente y aplicar ingeniería inversa a paquetes #Android 🧐 | reddit.com/r/u_esgeeks | 2021-10-02
-
Project mention: web-hacking-toolkit: Herramientas de hacking web multiplataforma con soporte GUI 💯 | reddit.com/r/u_esgeeks | 2021-11-04
-
archer-t2u-plus-linux
TP-Link Archer T2U Plus / AC600 High Gain USB Wifi Adapter Review & Driver installation Guide for various platforms.
Hello everyone recently decided to move from macosx to ubuntu 20.04 every part of my setup worked like a charm except wifi card, i've done some research about this card and officialy i'ts not linux supported. But there are a lot of tutorials how to use third party drivers like https://github.com/nlkguy/archer-t2u-plus-linux unfortunately for me after instalation of this drivers card does not work it's listed in usb devices but not listed as network device. If somebody know how to fix that i will appreciate help. I can provide logs and outputs i just have to know which command.
-
Project mention: #Hack4Squad: 💀 Un framework de #hacking y escaneo en Bash | reddit.com/r/u_esgeeks | 2021-04-23
-
Project mention: #HuntKit: Docker: Ubuntu con un montón de herramientas PenTesting y wordlists | reddit.com/r/u_esgeeks | 2021-03-14
-
Project mention: wiresec: 📦 Herramientas para ataques inalámbricos 🕷️ | reddit.com/r/u_esgeeks | 2021-07-19
-
Project mention: Shelly: Generador automático de #ReverseShell ✅ | reddit.com/r/u_esgeeks | 2021-10-17
-
-
css
Asymmetric encryption of the Clip Board to secure it with CSS(Copy Securely Secrets) with RSA encryption/decryption algorithms. (by Sanix-Darker)
To see more, this is the github project.
Shell Pentesting related posts
- Shelly: Generador automático de #ReverseShell ✅
- OWASP Mobile Security Testing Guide
- Asymetric RSA encryption/decryption of your clipboard
- We built a system like Apple’s to flag child sexual abuse material — and concluded the tech was dangerous
- wiresec: 📦 Herramientas para ataques inalámbricos 🕷️
- Protecting App from hacker
- Resources for reverse engineering tweaks
Index
What are some of the best open-source Pentesting projects in Shell? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | owasp-mstg | 8,230 |
| 2 | Sn1per | 4,861 |
| 3 | wstg | 3,822 |
| 4 | airgeddon | 3,780 |
| 5 | lscript | 3,024 |
| 6 | linux-smart-enumeration | 1,916 |
| 7 | pwncat | 1,216 |
| 8 | Sudomy | 1,108 |
| 9 | Goohak | 521 |
| 10 | ReverseAPK | 506 |
| 11 | web-hacking-toolkit | 79 |
| 12 | archer-t2u-plus-linux | 50 |
| 13 | Hack4Squad | 36 |
| 14 | huntkit | 26 |
| 15 | wiresec | 21 |
| 16 | Shelly | 19 |
| 17 | webrecon | 18 |
| 18 | css | 5 |
Are you hiring? Post a new remote job listing for free.
