Shell Pentesting

Open-source Shell projects categorized as Pentesting | Edit details

Top 21 Shell Pentesting Projects

  • GitHub repo owasp-mstg

    The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

    Project mention: What's your favorite cybersecurity documentation and why? | reddit.com/r/cybersecurity | 2022-01-16

    OWASP MASVS, MSTG, and WSTG.

  • GitHub repo Sn1per

    Attack Surface Management Platform | Sn1perSecurity LLC

    Project mention: Tools for github recon? | reddit.com/r/Pentesting | 2022-01-10

    Sniper All-in-one Pentesting tool

  • SonarQube

    Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

  • GitHub repo wstg

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    Project mention: What's your favorite cybersecurity documentation and why? | reddit.com/r/cybersecurity | 2022-01-16

    OWASP MASVS, MSTG, and WSTG.

  • GitHub repo airgeddon

    This is a multi-use bash script for Linux systems to audit wireless networks.

  • GitHub repo lscript

    The LAZY script will make your life easier, and of course faster.

    Project mention: Is it possible to crack a WPS faster with more Wifi interface devices? | reddit.com/r/hacking | 2021-04-25

    I had the fastest wps cracked with this tool, it is as ez as it could get https://github.com/arismelachroinos/lscript

  • GitHub repo linux-smart-enumeration

    Linux enumeration tool for pentesting and CTFs with verbosity levels

  • GitHub repo pwncat

    pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

    Project mention: Rustcat | A Modern Netcat Alternative | reddit.com/r/Hacking_Tutorials | 2021-08-07
  • OPS

    OPS - Build and Run Open Source Unikernels. Quickly and easily build and deploy open source unikernels in tens of seconds. Deploy in any language to any cloud.

  • GitHub repo Sudomy

    Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

    Project mention: Looking for an API like builtwith.com (let's you know what technology is behind website), but one that's opensource, or at least is more startup friendly .... | reddit.com/r/api | 2021-07-12

    That said, keep in mind that not everything is going to find its way indexed in Google. If it's subdomains you're after, you can use tools like Sublist3r or Sudomy to pull data from multiple sources (not just DNS).

  • GitHub repo Goohak

    Automatically Launch Google Hacking Queries Against A Target Domain

    Project mention: 1N3/Goohak - Automatically Launch Google Hacking Queries Against A Target Domain | reddit.com/r/GithubSecurityTools | 2021-04-15
  • GitHub repo ReverseAPK

    Quickly analyze and reverse engineer Android packages

    Project mention: ReverseAPK: Analizar rápidamente y aplicar ingeniería inversa a paquetes #Android 🧐 | reddit.com/r/u_esgeeks | 2021-10-02
  • GitHub repo web-hacking-toolkit

    A web hacking toolkit Docker image with GUI applications support.

    Project mention: web-hacking-toolkit: Herramientas de hacking web multiplataforma con soporte GUI 💯 | reddit.com/r/u_esgeeks | 2021-11-04
  • GitHub repo archer-t2u-plus-linux

    TP-Link Archer T2U Plus / AC600 High Gain USB Wifi Adapter Review & Driver installation Guide for various platforms.

    Project mention: Wifi card tp-link t2u plus drivers | reddit.com/r/linuxhardware | 2021-11-07

    Hello everyone recently decided to move from macosx to ubuntu 20.04 every part of my setup worked like a charm except wifi card, i've done some research about this card and officialy i'ts not linux supported. But there are a lot of tutorials how to use third party drivers like https://github.com/nlkguy/archer-t2u-plus-linux unfortunately for me after instalation of this drivers card does not work it's listed in usb devices but not listed as network device. If somebody know how to fix that i will appreciate help. I can provide logs and outputs i just have to know which command.

  • GitHub repo webrecon

    Automated Web Recon Shell Scripts

    Project mention: Some Web Recon Scripts for you guys :) | reddit.com/r/bugbounty | 2021-11-27
  • GitHub repo Hack4Squad

    :skull: A bash hacking and scanning framework.

    Project mention: #Hack4Squad: 💀 Un framework de #hacking y escaneo en Bash | reddit.com/r/u_esgeeks | 2021-04-23
  • GitHub repo huntkit

    Docker - Ubuntu with a bunch of PenTesting tools and wordlists

    Project mention: #HuntKit: Docker: Ubuntu con un montón de herramientas PenTesting y wordlists | reddit.com/r/u_esgeeks | 2021-03-14
  • GitHub repo wiresec

    📦 Wireless Attacks Tools 🕷️

    Project mention: wiresec: 📦 Herramientas para ataques inalámbricos 🕷️ | reddit.com/r/u_esgeeks | 2021-07-19
  • GitHub repo log4j-scan-turbo

    Multithreaded log4j vulnerability scanner using only bash! Tests all JNDI protocols, HTTP GET/POST, and 84 headers.

    Project mention: Meet log4j-scan-turbo | reddit.com/r/cybersecurity | 2021-12-17

    Sick of slow log4shell scanners? Meet log4j-scan-turbo! This multithreaded pure bash scanner uses curl + nohup to achieve 48 parallel threads while testing all jndi protocols, 84 headers, and the HTTP GET/POST methods. I recently finished building this script and it was able to scan 600 FQDNs/IPs in under an hour. Enjoy! https://github.com/ssstonebraker/log4j-scan-turbo

  • GitHub repo Shelly

    Automatic Reverse Shell Generator

    Project mention: Shelly: Generador automático de #ReverseShell ✅ | reddit.com/r/u_esgeeks | 2021-10-17
  • GitHub repo WolverineFramework

    WolverineFramework - Free, OpenSource and easy to use Cybersecurity Framework.

    Project mention: WolverineFramework: Frameworkde ciberseguridad gratuito, de código abierto y fácil de usar 🛡 | reddit.com/r/u_esgeeks | 2021-12-05
  • GitHub repo css

    Asymmetric encryption of the Clip Board to secure it with CSS(Copy Securely Secrets) with RSA encryption/decryption algorithms. (by Sanix-Darker)

    Project mention: Asymetric RSA encryption/decryption of your clipboard | dev.to | 2021-08-21

    To see more, this is the github project.

  • GitHub repo CapProcess

    A simple and useful script for capturing the processes running on a machine and some basic information about the system

    Project mention: CapProcess: Capturar los procesos que se ejecutan en una máquina 👀 | reddit.com/r/u_esgeeks | 2021-12-31
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-01-16.

Shell Pentesting related posts

Index

What are some of the best open-source Pentesting projects in Shell? This list will help you:

Project Stars
1 owasp-mstg 8,410
2 Sn1per 4,929
3 wstg 3,948
4 airgeddon 3,878
5 lscript 3,097
6 linux-smart-enumeration 2,007
7 pwncat 1,252
8 Sudomy 1,156
9 Goohak 538
10 ReverseAPK 522
11 web-hacking-toolkit 85
12 archer-t2u-plus-linux 59
13 webrecon 46
14 Hack4Squad 38
15 huntkit 34
16 wiresec 23
17 log4j-scan-turbo 20
18 Shelly 18
19 WolverineFramework 7
20 css 5
21 CapProcess 5
Find remote jobs at our new job board 99remotejobs.com. There are 29 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
Less time debugging, more time building
Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
scoutapm.com