Penetration Testing

Open-source projects categorized as Penetration Testing Edit details

Top 23 Penetration Testing Open-Source Projects

  • Awesome-Hacking

    A collection of various awesome lists for hackers, pentesters and security researchers

    Project mention: Neatly organizing hacking techniques and methods | reddit.com/r/cybersecurity | 2022-07-17
  • PayloadsAllTheThings

    A list of useful payloads and bypass for Web Application Security and Pentest/CTF

    Project mention: active directory cheet sheet | reddit.com/r/oscp | 2022-07-31
  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • Awesome-Hacking-Resources

    A collection of hacking / penetration testing resources to make you better!

    Project mention: Cybersecurity Repositories | reddit.com/r/netsecstudents | 2022-05-31

    Hacking Resources

  • h4cker

    This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

    Project mention: Ciberseguridad / hacking etico | reddit.com/r/devsarg | 2022-07-27
  • hacker-roadmap

    A collection of hacking tools, resources and references to practice ethical hacking.

    Project mention: Cybersecurity Repositories | reddit.com/r/netsecstudents | 2022-05-31

    Hacker Roadmap

  • dirsearch

    Web path scanner

    Project mention: Release dirsearch v0.4.2 - Web Path Scanner | reddit.com/r/netsec | 2021-09-12
  • setoolkit

    The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

    Project mention: There is framework for everything. | reddit.com/r/ProgrammerHumor | 2022-08-04
  • SonarLint

    Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

  • fsociety

    fsociety Hacking Tools Pack – A Penetration Testing Framework

    Project mention: 🤢What do we say cosmonauts? | reddit.com/r/cosmosnetwork | 2022-01-30
  • awesome-web-security

    🐶 A curated list of Web Security materials and resources.

    Project mention: Cybersecurity Repositories | reddit.com/r/netsecstudents | 2022-05-31

    Web Security

  • nishang

    Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

    Project mention: Nishang - PowerShell ofensivo para #redteam, las pruebas de penetración y la seguridad ofensiva 💯 | reddit.com/r/u_esgeeks | 2022-01-17
  • Scanners-Box

    A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

    Project mention: A powerful open-source toolkit for hackers and security automation | news.ycombinator.com | 2022-07-15
  • thc-hydra

    hydra

    Project mention: Brute force tool for webpages | reddit.com/r/HowToHack | 2022-07-05
  • monkey

    Infection Monkey - An automated pentest tool

    Project mention: If you could name 5 tools/software worth learning for a cybersecurity analyst to become more employable, what would they be? | reddit.com/r/cybersecurity | 2022-07-24

    https://github.com/guardicore/monkey The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Monkey Island server.

  • Sn1per

    Attack Surface Management Platform | Sn1perSecurity LLC

    Project mention: Are there any good automated attack tools besides Pentera? | reddit.com/r/cybersecurity | 2022-05-10

    Sn1per https://github.com/1N3/Sn1per

  • commando-vm

    Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

    Project mention: Security VMs | reddit.com/r/blueteamsec | 2022-06-23
  • Osintgram

    Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

    Project mention: I need an Instagram tool scanning the target1's "following" scanning their "following" until target2 is found. It’s basically a while loop. In other words, I need the Instagram version of the "red bands on board" thing. Thank you. | reddit.com/r/OSINT | 2022-07-30
  • wstg

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    Project mention: Web App Pentesting Career | reddit.com/r/Pentesting | 2022-06-11

    Hi, sit and learn https://owasp.org/www-project-web-security-testing-guide/ that's the best way, than may be EJPT.

  • Infosec_Reference

    An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

    Project mention: Manuals | reddit.com/r/Hacking_Tutorials | 2022-07-06
  • rengine

    reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

    Project mention: Open source projects from Nepal | reddit.com/r/technepal | 2021-12-04

    Check this: https://github.com/yogeshojha/rengine

  • awesome-web-hacking

    A list of web application security

    Project mention: Cybersecurity Repositories | reddit.com/r/netsecstudents | 2022-05-31

    Web Hacking

  • awesome-infosec

    A curated list of awesome infosec courses and training resources.

    Project mention: Cybersecurity Repositories | reddit.com/r/netsecstudents | 2022-05-31

    Industrial Control System Security InfoSec

  • WhatWeb

    Next generation web scanner

  • osmedeus

    A Workflow Engine for Offensive Security

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-08-04.

Penetration Testing related posts

Index

What are some of the best open-source Penetration Testing projects? This list will help you:

Project Stars
1 Awesome-Hacking 53,974
2 PayloadsAllTheThings 39,784
3 Awesome-Hacking-Resources 12,305
4 h4cker 11,816
5 hacker-roadmap 9,333
6 dirsearch 8,313
7 setoolkit 7,843
8 fsociety 7,820
9 awesome-web-security 7,446
10 nishang 6,691
11 Scanners-Box 6,473
12 thc-hydra 6,413
13 monkey 5,891
14 Sn1per 5,479
15 commando-vm 5,442
16 Osintgram 4,703
17 wstg 4,650
18 Infosec_Reference 4,477
19 rengine 4,378
20 awesome-web-hacking 4,144
21 awesome-infosec 4,077
22 WhatWeb 3,978
23 osmedeus 3,950
Find remote jobs at our new job board 99remotejobs.com. There is 1 new remote job listed recently.
Are you hiring? Post a new remote job listing for free.
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com