Pentesters arsenal tools
Sandcat Browser β a penetration-oriented browser with plenty of advanced functionality already built in.
Metasploit β tool and framework for pentesting system, web and many more, contains a lot a ready to use exploit.
Burp Suite β tool for testing web app security, intercepting proxy to replay, inject, scan and fuzz.
OWASP Zed Attack Proxy β intercepting proxy to replay, inject, scan and fuzz HTTP requests.
w3af β is a Web Application Attack and Audit Framework.
mitmproxy β an interactive TLS-capable intercepting HTTP proxy for penetration testers.
Nikto2 β web server scanner which performs comprehensive tests against web servers for multiple items.
sqlmap β tool that automates the process of detecting and exploiting SQL injection flaws.
Recon-ng β is a full-featured Web Reconnaissance framework written in Python.
AutoRecon β is a network reconnaissance tool which performs automated enumeration of services.
Faraday β an Integrated Multiuser Pentest Environment.
Photon β incredibly fast crawler designed for OSINT.
XSStrike β most advanced XSS detection suite.
Sn1per β automated pentest framework for offensive security experts.
vuls β is an agent-less vulnerability scanner for Linux, FreeBSD, and other.
tsunami β is a general purpose network security scanner with an extensible plugin system.
aquatone β a tool for domain flyovers.
BillCipher β information gathering tool for a website or IP address.
WhatWaf β detect and bypass web application firewalls and protection systems.
Corsy β CORS misconfiguration scanner.
Raccoon β is a high performance offensive security tool for reconnaissance and vulnerability scanning.
dirhunt β find web directories without bruteforce.
John The Ripper β is a fast password cracker, currently available for many flavors of Unix, Windows, and other.
hashcat β worldβs fastest and most advanced password recovery utility.
p0f β is a tool to identify the players behind any incidental TCP/IP communications.
ssh_scan β a prototype SSH configuration and policy scanner.
LeakLooker β find open databases β powered by Binaryedge.io
exploitdb β searchable archive from The Exploit Database.
getsploit β is a command line utility for searching and downloading exploits.
ctf-tools β some setup scripts for security research tools.
pwntools β CTF framework and exploit development library.
security-tools β collection of small security tools created mostly in Python. CTFs, pentests and so on.
pentestpackage β is a package of Pentest scripts.
python-pentest-tools β python tools for penetration testers.
fuzzdb β dictionary of attack patterns and primitives for black-box application fault injection.
AFL β is a free software fuzzer maintained by Google.
AFL++ β is AFL with community patches.
syzkaller β is an unsupervised, coverage-guided kernel fuzzer.
pwndbg β exploit development and reverse engineering with GDB made easy.
GDB PEDA β Python Exploit Development Assistance for GDB.
IDA β multi-processor disassembler and debugger useful for reverse engineering malware.
radare2 β framework for reverse-engineering and analyzing binaries.
routersploit β exploitation framework for embedded devices.
Ghidra β is a software reverse engineering (SRE) framework.
Vulnreport β open-source pentesting management and automation platform by Salesforce Product Security.
Mentalist β is a graphical tool for custom wordlist generation.
archerysec β vulnerability assessment and management helps to perform scans and manage vulnerabilities.
Osmedeus β fully automated offensive security tool for reconnaissance and vulnerability scanning.
beef β the browser exploitation framework project.
AutoSploit β automated mass exploiter.
SUDO_KILLER β is a tool to identify and exploit sudo rulesβ misconfigurations and vulnerabilities.
yara β the pattern matching swiss knife.
mimikatz β a little tool to play with Windows security.
sherlock β hunt down social media accounts by username across social networks.
OWASP Threat Dragon β is a tool used to create threat model diagrams and to record possible threats.
Pentests bookmarks collection
PTES β the penetration testing execution standard.
Pentests MindMap β amazing mind map with vulnerable apps and systems.
WebApps Security Tests MindMap β incredible mind map for WebApps security tests.
Brute XSS β master the art of Cross Site Scripting.
XSS cheat sheet β contains many vectors that can help you bypass WAFs and filters.
Offensive Security Bookmarks β security bookmarks collection, all things that author need to pass OSCP.
Awesome Pentest Cheat Sheets β collection of the cheat sheets useful for pentesting.
Awesome Hacking by HackWithGithub β awesome lists for hackers, pentesters and security researchers.
Awesome Hacking by carpedm20 β a curated list of awesome hacking tutorials, tools and resources.
Awesome Hacking Resources β collection of hacking/penetration testing resources to make you better.
Awesome Pentest β collection of awesome penetration testing resources, tools and other shiny things.
Awesome-Hacking-Tools β is a curated list of awesome Hacking Tools.
Hacking Cheat Sheet β author hacking and pentesting notes.
blackhat-arsenal-tools β official Black Hat arsenal security tools repository.
Penetration Testing and WebApp Cheat Sheets β the complete list of Infosec related cheat sheets.
Cyber Security Resources β includes thousands of cybersecurity-related references and resources.
Pentest Bookmarks β there are a LOT of pentesting blogs.
Cheatsheet-God β Penetration Testing Reference Bank β OSCP/PTP & PTX Cheatsheet.
ThreatHunter-Playbook β to aid the development of techniques and hypothesis for hunting campaigns.
Beginner-Network-Pentesting β notes for beginner network pentesting course.
OSCPRepo β is a list of resources that author have been gathering in preparation for the OSCP.
PayloadsAllTheThings β a list of useful payloads and bypass for Web Application Security and Pentest/CTF.
payloads β git all the Payloads! A collection of web attack payloads.
command-injection-payload-list β command injection payload list.
Awesome Shodan Search Queries β great search queries to plug into Shodan.
AwesomeXSS β is a collection of Awesome XSS resources.
php-webshells β common php webshells.
Pentesting Tools Cheat Sheet β a quick reference high level overview for typical penetration testing.
OWASP Cheat Sheet Series β is a collection of high value information on specific application security topics.
OWASP dependency-check β is an open source solution the OWASP Top 10 2013 entry.
OWASP ProActive Controls β OWASP Top 10 Proactive Controls 2018.
PENTESTING-BIBLE β hacking & penetration testing & red team & cyber security resources.
pentest-wiki β is a free online security knowledge library for pentesters/researchers.
DEF CON Media Server β great stuff from DEFCON.
Awesome Malware Analysis β a curated list of awesome malware analysis tools and resources.
SQL Injection Cheat Sheet β detailed technical stuff about the many different variants of the SQL Injection.
Entersoft Knowledge Base β great and detailed reference about vulnerabilities.
HTML5 Security Cheatsheet β a collection of HTML5 related XSS attack vectors.
XSS String Encoder β for generating XSS code to check your input validation filters against XSS.
GTFOBins β list of Unix binaries that can be exploited by an attacker to bypass local security restrictions.
Guifre Ruiz Notes β collection of security, system, network and pentest cheatsheets.
SSRF Tips β a collection of SSRF Tips.
shell-storm repo CTF β great archive of CTFs.
ctf β CTF (Capture The Flag) writeups, code snippets, notes, scripts.
My-CTF-Web-Challenges β collection of CTF Web challenges.
MSTG β The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing.
Internal-Pentest-Playbook β notes on the most common things for an Internal Network Penetration Test.
KeyHacks β shows quick ways in which API keys leaked by a bug bounty program can be checked.
securitum/research β various Proof of Concepts of security research performed by Securitum.
public-pentesting-reports β is a list of public pentest reports released by several consulting security groups.
awesome-bug-bounty β is a comprehensive curated list of available Bug Bounty.
bug-bounty-reference β is a list of bug bounty write-ups.
Awesome-Bugbounty-Writeups β is a curated list of bugbounty writeups.
Bug bounty writeups β list of bug bounty writeups (2012-2020).
hackso.me β a great journey into security.
Backdoors/exploits
PHP-backdoors β a collection of PHP backdoors. For educational or testing purposes only.
Wordlists and Weak passwords
Weakpass β for any kind of bruteforce find wordlists or unleash the power of them all at once!
Hashes.org β is a free online hash resolving service incorporating many unparalleled techniques.
SecLists β collection of multiple types of lists used during security assessments, collected in one place.
Probable-Wordlists β sorted by probability originally created for password generation and testing.
skullsecurity passwords β password dictionaries and leaked passwords repository.
Polish PREMIUM Dictionary β official dictionary created by the team on the forum bezpieka.org.* 1
statistically-likely-usernames β wordlists for creating statistically likely username lists.
Bounty platforms
YesWeHack β bug bounty platform with infosec jobs.
Openbugbounty β allows any security researcher reporting a vulnerability on any website.
hackerone β global hacker community to surface the most relevant security issues.
bugcrowd β crowdsourced cybersecurity for the enterprise.
Crowdshield β crowdsourced security & bug bounty management.
Synack β crowdsourced security & bug bounty programs, crowd security intelligence platform, and more.
Hacktrophy β bug bounty platform.
Web Training Apps (local installation)
OWASP-VWAD β comprehensive and well maintained registry of all known vulnerable web applications.
DVWA β PHP/MySQL web application that is damn vulnerable.
metasploitable2 β vulnerable web application amongst security researchers.
metasploitable3 β is a VM that is built from the ground up with a large amount of security vulnerabilities.
DSVW β is a deliberately vulnerable web application written in under 100 lines of code.
OWASP Mutillidae II β free, open source, deliberately vulnerable web-application.
OWASP Juice Shop Project β the most bug-free vulnerable application in existence.
OWASP Node js Goat Project β OWASP Top 10 security risks apply to web apps developed using Node.js.
juicy-ctf β run Capture the Flags and Security Trainings with OWASP Juice Shop.
SecurityShepherd β web and mobile application security training platform.
Security Ninjas β open source application security training program.
hackazon β a modern vulnerable web app.
dvna β damn vulnerable NodeJS application.
django-DefectDojo β is an open-source application vulnerability correlation and security orchestration tool.
Google Gruyere β web application exploits and defenses.
Bodhi β is a playground focused on learning the exploitation of client-side web vulnerabilities.
Websploit β single vm lab with the purpose of combining several vulnerable appliations in one environment.
vulhub β pre-built Vulnerable Environments based on docker-compose.
CloudGoat 2 β the new & improved βVulnerable by Designβ AWS deployment tool.
secDevLabs β is a laboratory for learning secure web development in a practical manner.
CORS-vulnerable-Lab β sample vulnerable code and its exploit code.
RootTheBox β a Game of Hackers (CTF Scoreboard & Game Manager).
KONTRA β application security training (OWASP Top Web & Api).
Labs (ethical hacking platforms/trainings/CTFs)
Offensive Security β true performance-based penetration testing training for over a decade.
Hack The Box β online platform allowing you to test your penetration testing skills.
Hacking-Lab β online ethical hacking, computer network and security challenge platform.
pwnable.kr β non-commercial wargame site which provides various pwn challenges.
Pwnable.tw β is a wargame site for hackers to test and expand their binary exploiting skills.
picoCTF β is a free computer security game targeted at middle and high school students.
CTFlearn β is an online platform built to help ethical hackers learn and practice their cybersecurity knowledge.
ctftime β CTF archive and a place, where you can get some another CTF-related info.
Silesia Security Lab β high quality security testing services.
Practical Pentest Labs β pentest lab, take your Hacking skills to the next level.
Root Me β the fast, easy, and affordable way to train your hacking skills.
rozwal.to β a great platform to train your pentesting skills.
TryHackMe β learning Cyber Security made easy.
hackxor β is a realistic web application hacking game, designed to help players of all abilities develop their skills.
Hack Yourself First β itβs full of nasty app sec holes.
OverTheWire β can help you to learn and practice security concepts in the form of fun-filled games.
Wizard Labs β is an online Penetration Testing Lab.
PentesterLab β provides vulnerable systems that can be used to test and understand vulnerabilities.
RingZer0 β tons of challenges designed to test and improve your hacking skills.
try2hack β several security-oriented challenges for your entertainment.
Ubeeri β preconfigured lab environments.
Pentestit β emulate IT infrastructures of real companies for legal pen testing and improving pentest skills.
Microcorruption β reversal challenges done in the web interface.
Crackmes β download crackmes to help improve your reverse engineering skills.
DomGoat β DOM XSS security learning and practicing platform.
Stereotyped Challenges β upgrade your web hacking techniques today!
Vulnhub β allows anyone to gain practical βhands-onβ experience in digital security.
W3Challs β is a penetration testing training platform, which offers various computer challenges.
RingZer0 CTF β offers you tons of challenges designed to test and improve your hacking skills.
Hack.me β a platform where you can build, host and share vulnerable web apps for educational purposes.
HackThis! β discover how hacks, dumps and defacements are performed and secure your website.
Enigma Group WebApp Training β these challenges cover the exploits listed in the OWASP Top 10 Project.
Reverse Engineering Challenges β challenges, exercises, problems and tasks β by level, by type, and more.
0x00sec β the home of the Hacker β Malware, Reverse Engineering, and Computer Science.
We Chall β there are exist a lots of different challenge types.
Hacker Gateway β is the go-to place for hackers who want to test their skills.
Hacker101 β is a free class for web security.
contained.af β a stupid game for learning about containers, capabilities, and syscalls.
flAWS challenge! β a series of levels youβll learn about common mistakes and gotchas when using AWS.
CyberSec WTF β provides web hacking challenges derived from bounty write-ups.
CTF Challenge β CTF Web App challenges.
gCTF β most of the challenges used in the Google CTF 2017.
Hack This Site β is a free, safe and legal training ground for hackers.
Attack & Defense β is a browser-based cloud labs.
Cryptohack β a fun platform for learning modern cryptography.
Cryptopals β the cryptopals crypto challenges.
CTF platforms
fbctf β platform to host Capture the Flag competitions.
ctfscoreboard β scoreboard for Capture The Flag competitions.
Other resources
Bugcrowd University β open source education content for the researcher community.
OSCPRepo β a list of resources and scripts that I have been gathering in preparation for the OSCP.
OWASP Top 10: Real-World Examples β test your web apps with real-world examples (two-part series).
phrack.org β an awesome collection of articles from several respected hackers and other thinkers.
Practical-Ethical-Hacking-Resources β compilation of resources from TCMβs Udemy Course.
Your daily knowledge and news [TOC]
Your daily knowledge and news [TOC]
RSS Readers
Feedly β organize, read and share what matters to you.
Inoreader β similar to feedly with a support for filtering what you fetch from rss.
IRC Channels
#hackerspaces β hackerspace IRC channels.
Security
The Hacker News β leading news source dedicated to promoting awareness for security experts and hackers.
Latest Hacking News β provides the latest hacking news, exploits and vulnerabilities for ethical hackers.
Security Newsletter β security news as a weekly digest (email notifications).
Google Online Security Blog β the latest news and insights from Google on security and safety on the Internet.
Qualys Blog β expert network security guidance and news.
DARKReading β connecting the Information Security Community.
Darknet β latest hacking tools, hacker news, cybersecurity best practices, ethical hacking & pen-testing.
publiclyDisclosed β public disclosure watcher who keeps you up to date about the recently disclosed bugs.
Reddit β Hacking β a subreddit dedicated to hacking and hackers.
Packet Storm β information security services, news, files, tools, exploits, advisories and whitepapers.
Sekurak β about security, penetration tests, vulnerabilities and many others (PL/EN).
nf.sec β basic aspects and mechanisms of Linux operating system security (PL).
Reference
Iβm a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I am working at Cotocus. I blog tech insights at DevOps School, travel stories at Holiday Landmark, stock market tips at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at I reviewed , and SEO strategies at Wizbrand.
Please find my social handles as below;
Rajesh Kumar Personal Website
Rajesh Kumar at YOUTUBE
Rajesh Kumar at INSTAGRAM
Rajesh Kumar at X
Rajesh Kumar at FACEBOOK
Rajesh Kumar at LINKEDIN
Rajesh Kumar at PINTEREST
Rajesh Kumar at QUORA
Rajesh Kumar at WIZBRAND