SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 Penetration Testing Open-Source Projects
-
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
-
CodeRabbit
CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.
-
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Project mention: PayloadsAllTheThings: Essential Payloads and Bypass for Web Security and CTFs | news.ycombinator.com | 2024-08-11 -
h4cker
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
-
Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
-
-
-
setoolkit
The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
-
Osintgram
Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname
-
-
-
Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
-
-
-
rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
-
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
-
commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]
-
-
-
-
awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
-
-
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Penetration Testing discussion
Penetration Testing related posts
-
Pentesting AWS VPCs: Identifying and Mitigating Risks
-
WhatWeb: Next Generation Web Scanner
-
Where do you focus your time and energy?
-
XSS
-
GitHub: Can no longer search code without being logged in
-
Como identificar vulnerabilidades no código fonte?
-
Ask HN: Guidance starting an infosec careeer from scratch
-
A note from our sponsor - SaaSHub
www.saashub.com | 10 Feb 2025
Index
What are some of the best open-source Penetration Testing projects? This list will help you:
# | Project | Stars |
---|---|---|
1 | Awesome-Hacking | 88,532 |
2 | PayloadsAllTheThings | 63,063 |
3 | h4cker | 19,747 |
4 | Awesome-Hacking-Resources | 15,612 |
5 | dirsearch | 12,509 |
6 | awesome-web-security | 11,668 |
7 | setoolkit | 11,385 |
8 | fsociety | 10,853 |
9 | Osintgram | 10,149 |
10 | thc-hydra | 10,052 |
11 | nishang | 8,965 |
12 | Scanners-Box | 8,388 |
13 | Sn1per | 8,365 |
14 | PentestGPT | 7,705 |
15 | rengine | 7,683 |
16 | wstg | 7,605 |
17 | commando-vm | 7,061 |
18 | monkey | 6,725 |
19 | cve | 6,719 |
20 | RedTeam-Tools | 6,261 |
21 | awesome-shodan-queries | 6,093 |
22 | awesome-web-hacking | 6,005 |
23 | reconftw | 5,948 |