Pentesters arsenal tools
πΈ Sandcat Browser β a penetration-oriented browser with plenty of advanced functionality already built in.
πΈ Metasploit β tool and framework for pentesting system, web and many more, contains a lot a ready to use exploit.
πΈ Burp Suite β tool for testing web app security, intercepting proxy to replay, inject, scan and fuzz.
πΈ OWASP Zed Attack Proxy β intercepting proxy to replay, inject, scan and fuzz HTTP requests.
πΈ w3af β is a Web Application Attack and Audit Framework.
πΈ mitmproxy β an interactive TLS-capable intercepting HTTP proxy for penetration testers.
πΈ Nikto2 β web server scanner which performs comprehensive tests against web servers for multiple items.
πΈ sqlmap β tool that automates the process of detecting and exploiting SQL injection flaws.
πΈ Recon-ng β is a full-featured Web Reconnaissance framework written in Python.
πΈ AutoRecon β is a network reconnaissance tool which performs automated enumeration of services.
πΈ Faraday β an Integrated Multiuser Pentest Environment.
πΈ Photon β incredibly fast crawler designed for OSINT.
πΈ XSStrike β most advanced XSS detection suite.
πΈ Sn1per β automated pentest framework for offensive security experts.
πΈ vuls β is an agent-less vulnerability scanner for Linux, FreeBSD, and other.
πΈ tsunami β is a general purpose network security scanner with an extensible plugin system.
πΈ aquatone β a tool for domain flyovers.
πΈ BillCipher β information gathering tool for a website or IP address.
πΈ WhatWaf β detect and bypass web application firewalls and protection systems.
πΈ Corsy β CORS misconfiguration scanner.
πΈ Raccoon β is a high performance offensive security tool for reconnaissance and vulnerability scanning.
πΈ dirhunt β find web directories without bruteforce.
πΈ John The Ripper β is a fast password cracker, currently available for many flavors of Unix, Windows, and other.
πΈ hashcat β worldβs fastest and most advanced password recovery utility.
πΈ p0f β is a tool to identify the players behind any incidental TCP/IP communications.
πΈ ssh_scan β a prototype SSH configuration and policy scanner.
πΈ LeakLooker β find open databases β powered by Binaryedge.io
πΈ exploitdb β searchable archive from The Exploit Database.
πΈ getsploit β is a command line utility for searching and downloading exploits.
πΈ ctf-tools β some setup scripts for security research tools.
πΈ pwntools β CTF framework and exploit development library.
πΈ security-tools β collection of small security tools created mostly in Python. CTFs, pentests and so on.
πΈ pentestpackage β is a package of Pentest scripts.
πΈ python-pentest-tools β python tools for penetration testers.
πΈ fuzzdb β dictionary of attack patterns and primitives for black-box application fault injection.
πΈ AFL β is a free software fuzzer maintained by Google.
πΈ AFL++ β is AFL with community patches.
πΈ syzkaller β is an unsupervised, coverage-guided kernel fuzzer.
πΈ pwndbg β exploit development and reverse engineering with GDB made easy.
πΈ GDB PEDA β Python Exploit Development Assistance for GDB.
πΈ IDA β multi-processor disassembler and debugger useful for reverse engineering malware.
πΈ radare2 β framework for reverse-engineering and analyzing binaries.
πΈ routersploit β exploitation framework for embedded devices.
πΈ Ghidra β is a software reverse engineering (SRE) framework.
πΈ Vulnreport β open-source pentesting management and automation platform by Salesforce Product Security.
πΈ Mentalist β is a graphical tool for custom wordlist generation.
πΈ archerysec β vulnerability assessment and management helps to perform scans and manage vulnerabilities.
πΈ Osmedeus β fully automated offensive security tool for reconnaissance and vulnerability scanning.
πΈ beef β the browser exploitation framework project.
πΈ AutoSploit β automated mass exploiter.
πΈ SUDO_KILLER β is a tool to identify and exploit sudo rulesβ misconfigurations and vulnerabilities.
πΈ yara β the pattern matching swiss knife.
πΈ mimikatz β a little tool to play with Windows security.
πΈ sherlock β hunt down social media accounts by username across social networks.
πΈ OWASP Threat Dragon β is a tool used to create threat model diagrams and to record possible threats.
βͺοΈ Pentests bookmarks collection
πΈ PTES β the penetration testing execution standard.
πΈ Pentests MindMap β amazing mind map with vulnerable apps and systems.
πΈ WebApps Security Tests MindMap β incredible mind map for WebApps security tests.
πΈ Brute XSS β master the art of Cross Site Scripting.
πΈ XSS cheat sheet β contains many vectors that can help you bypass WAFs and filters.
πΈ Offensive Security Bookmarks β security bookmarks collection, all things that author need to pass OSCP.
πΈ Awesome Pentest Cheat Sheets β collection of the cheat sheets useful for pentesting.
πΈ Awesome Hacking by HackWithGithub β awesome lists for hackers, pentesters and security researchers.
πΈ Awesome Hacking by carpedm20 β a curated list of awesome hacking tutorials, tools and resources.
πΈ Awesome Hacking Resources β collection of hacking/penetration testing resources to make you better.
πΈ Awesome Pentest β collection of awesome penetration testing resources, tools and other shiny things.
πΈ Awesome-Hacking-Tools β is a curated list of awesome Hacking Tools.
πΈ Hacking Cheat Sheet β author hacking and pentesting notes.
πΈ blackhat-arsenal-tools β official Black Hat arsenal security tools repository.
πΈ Penetration Testing and WebApp Cheat Sheets β the complete list of Infosec related cheat sheets.
πΈ Cyber Security Resources β includes thousands of cybersecurity-related references and resources.
πΈ Pentest Bookmarks β there are a LOT of pentesting blogs.
πΈ Cheatsheet-God β Penetration Testing Reference Bank β OSCP/PTP & PTX Cheatsheet.
πΈ ThreatHunter-Playbook β to aid the development of techniques and hypothesis for hunting campaigns.
πΈ Beginner-Network-Pentesting β notes for beginner network pentesting course.
πΈ OSCPRepo β is a list of resources that author have been gathering in preparation for the OSCP.
πΈ PayloadsAllTheThings β a list of useful payloads and bypass for Web Application Security and Pentest/CTF.
πΈ payloads β git all the Payloads! A collection of web attack payloads.
πΈ command-injection-payload-list β command injection payload list.
πΈ Awesome Shodan Search Queries β great search queries to plug into Shodan.
πΈ AwesomeXSS β is a collection of Awesome XSS resources.
πΈ php-webshells β common php webshells.
πΈ Pentesting Tools Cheat Sheet β a quick reference high level overview for typical penetration testing.
πΈ OWASP Cheat Sheet Series β is a collection of high value information on specific application security topics.
πΈ OWASP dependency-check β is an open source solution the OWASP Top 10 2013 entry.
πΈ OWASP ProActive Controls β OWASP Top 10 Proactive Controls 2018.
πΈ PENTESTING-BIBLE β hacking & penetration testing & red team & cyber security resources.
πΈ pentest-wiki β is a free online security knowledge library for pentesters/researchers.
πΈ DEF CON Media Server β great stuff from DEFCON.
πΈ Awesome Malware Analysis β a curated list of awesome malware analysis tools and resources.
πΈ SQL Injection Cheat Sheet β detailed technical stuff about the many different variants of the SQL Injection.
πΈ Entersoft Knowledge Base β great and detailed reference about vulnerabilities.
πΈ HTML5 Security Cheatsheet β a collection of HTML5 related XSS attack vectors.
πΈ XSS String Encoder β for generating XSS code to check your input validation filters against XSS.
πΈ GTFOBins β list of Unix binaries that can be exploited by an attacker to bypass local security restrictions.
πΈ Guifre Ruiz Notes β collection of security, system, network and pentest cheatsheets.
πΈ SSRF Tips β a collection of SSRF Tips.
πΈ shell-storm repo CTF β great archive of CTFs.
πΈ ctf β CTF (Capture The Flag) writeups, code snippets, notes, scripts.
πΈ My-CTF-Web-Challenges β collection of CTF Web challenges.
πΈ MSTG β The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing.
πΈ Internal-Pentest-Playbook β notes on the most common things for an Internal Network Penetration Test.
πΈ KeyHacks β shows quick ways in which API keys leaked by a bug bounty program can be checked.
πΈ securitum/research β various Proof of Concepts of security research performed by Securitum.
πΈ public-pentesting-reports β is a list of public pentest reports released by several consulting security groups.
πΈ awesome-bug-bounty β is a comprehensive curated list of available Bug Bounty.
πΈ bug-bounty-reference β is a list of bug bounty write-ups.
πΈ Awesome-Bugbounty-Writeups β is a curated list of bugbounty writeups.
πΈ Bug bounty writeups β list of bug bounty writeups (2012-2020).
πΈ hackso.me β a great journey into security.
βͺοΈ Backdoors/exploits
πΈ PHP-backdoors β a collection of PHP backdoors. For educational or testing purposes only.
βͺοΈ Wordlists and Weak passwords
πΈ Weakpass β for any kind of bruteforce find wordlists or unleash the power of them all at once!
πΈ Hashes.org β is a free online hash resolving service incorporating many unparalleled techniques.
πΈ SecLists β collection of multiple types of lists used during security assessments, collected in one place.
πΈ Probable-Wordlists β sorted by probability originally created for password generation and testing.
πΈ skullsecurity passwords β password dictionaries and leaked passwords repository.
πΈ Polish PREMIUM Dictionary β official dictionary created by the team on the forum bezpieka.org.* 1
πΈ statistically-likely-usernames β wordlists for creating statistically likely username lists.
βͺοΈ Bounty platforms
πΈ YesWeHack β bug bounty platform with infosec jobs.
πΈ Openbugbounty β allows any security researcher reporting a vulnerability on any website.
πΈ hackerone β global hacker community to surface the most relevant security issues.
πΈ bugcrowd β crowdsourced cybersecurity for the enterprise.
πΈ Crowdshield β crowdsourced security & bug bounty management.
πΈ Synack β crowdsourced security & bug bounty programs, crowd security intelligence platform, and more.
πΈ Hacktrophy β bug bounty platform.
βͺοΈ Web Training Apps (local installation)
πΈ OWASP-VWAD β comprehensive and well maintained registry of all known vulnerable web applications.
πΈ DVWA β PHP/MySQL web application that is damn vulnerable.
πΈ metasploitable2 β vulnerable web application amongst security researchers.
πΈ metasploitable3 β is a VM that is built from the ground up with a large amount of security vulnerabilities.
πΈ DSVW β is a deliberately vulnerable web application written in under 100 lines of code.
πΈ OWASP Mutillidae II β free, open source, deliberately vulnerable web-application.
πΈ OWASP Juice Shop Project β the most bug-free vulnerable application in existence.
πΈ OWASP Node js Goat Project β OWASP Top 10 security risks apply to web apps developed using Node.js.
πΈ juicy-ctf β run Capture the Flags and Security Trainings with OWASP Juice Shop.
πΈ SecurityShepherd β web and mobile application security training platform.
πΈ Security Ninjas β open source application security training program.
πΈ hackazon β a modern vulnerable web app.
πΈ dvna β damn vulnerable NodeJS application.
πΈ django-DefectDojo β is an open-source application vulnerability correlation and security orchestration tool.
πΈ Google Gruyere β web application exploits and defenses.
πΈ Bodhi β is a playground focused on learning the exploitation of client-side web vulnerabilities.
πΈ Websploit β single vm lab with the purpose of combining several vulnerable appliations in one environment.
πΈ vulhub β pre-built Vulnerable Environments based on docker-compose.
πΈ CloudGoat 2 β the new & improved βVulnerable by Designβ AWS deployment tool.
πΈ secDevLabs β is a laboratory for learning secure web development in a practical manner.
πΈ CORS-vulnerable-Lab β sample vulnerable code and its exploit code.
πΈ RootTheBox β a Game of Hackers (CTF Scoreboard & Game Manager).
πΈ KONTRA β application security training (OWASP Top Web & Api).
βͺοΈ Labs (ethical hacking platforms/trainings/CTFs)
πΈ Offensive Security β true performance-based penetration testing training for over a decade.
πΈ Hack The Box β online platform allowing you to test your penetration testing skills.
πΈ Hacking-Lab β online ethical hacking, computer network and security challenge platform.
πΈ pwnable.kr β non-commercial wargame site which provides various pwn challenges.
πΈ Pwnable.tw β is a wargame site for hackers to test and expand their binary exploiting skills.
πΈ picoCTF β is a free computer security game targeted at middle and high school students.
πΈ CTFlearn β is an online platform built to help ethical hackers learn and practice their cybersecurity knowledge.
πΈ ctftime β CTF archive and a place, where you can get some another CTF-related info.
πΈ Silesia Security Lab β high quality security testing services.
πΈ Practical Pentest Labs β pentest lab, take your Hacking skills to the next level.
πΈ Root Me β the fast, easy, and affordable way to train your hacking skills.
πΈ rozwal.to β a great platform to train your pentesting skills.
πΈ TryHackMe β learning Cyber Security made easy.
πΈ hackxor β is a realistic web application hacking game, designed to help players of all abilities develop their skills.
πΈ Hack Yourself First β itβs full of nasty app sec holes.
πΈ OverTheWire β can help you to learn and practice security concepts in the form of fun-filled games.
πΈ Wizard Labs β is an online Penetration Testing Lab.
πΈ PentesterLab β provides vulnerable systems that can be used to test and understand vulnerabilities.
πΈ RingZer0 β tons of challenges designed to test and improve your hacking skills.
πΈ try2hack β several security-oriented challenges for your entertainment.
πΈ Ubeeri β preconfigured lab environments.
πΈ Pentestit β emulate IT infrastructures of real companies for legal pen testing and improving pentest skills.
πΈ Microcorruption β reversal challenges done in the web interface.
πΈ Crackmes β download crackmes to help improve your reverse engineering skills.
πΈ DomGoat β DOM XSS security learning and practicing platform.
πΈ Stereotyped Challenges β upgrade your web hacking techniques today!
πΈ Vulnhub β allows anyone to gain practical βhands-onβ experience in digital security.
πΈ W3Challs β is a penetration testing training platform, which offers various computer challenges.
πΈ RingZer0 CTF β offers you tons of challenges designed to test and improve your hacking skills.
πΈ Hack.me β a platform where you can build, host and share vulnerable web apps for educational purposes.
πΈ HackThis! β discover how hacks, dumps and defacements are performed and secure your website.
πΈ Enigma Group WebApp Training β these challenges cover the exploits listed in the OWASP Top 10 Project.
πΈ Reverse Engineering Challenges β challenges, exercises, problems and tasks β by level, by type, and more.
πΈ 0x00sec β the home of the Hacker β Malware, Reverse Engineering, and Computer Science.
πΈ We Chall β there are exist a lots of different challenge types.
πΈ Hacker Gateway β is the go-to place for hackers who want to test their skills.
πΈ Hacker101 β is a free class for web security.
πΈ contained.af β a stupid game for learning about containers, capabilities, and syscalls.
πΈ flAWS challenge! β a series of levels youβll learn about common mistakes and gotchas when using AWS.
πΈ CyberSec WTF β provides web hacking challenges derived from bounty write-ups.
πΈ CTF Challenge β CTF Web App challenges.
πΈ gCTF β most of the challenges used in the Google CTF 2017.
πΈ Hack This Site β is a free, safe and legal training ground for hackers.
πΈ Attack & Defense β is a browser-based cloud labs.
πΈ Cryptohack β a fun platform for learning modern cryptography.
πΈ Cryptopals β the cryptopals crypto challenges.
βͺοΈ CTF platforms
πΈ fbctf β platform to host Capture the Flag competitions.
πΈ ctfscoreboard β scoreboard for Capture The Flag competitions.
βͺοΈ Other resources
πΈ Bugcrowd University β open source education content for the researcher community.
πΈ OSCPRepo β a list of resources and scripts that I have been gathering in preparation for the OSCP.
πΈ OWASP Top 10: Real-World Examples β test your web apps with real-world examples (two-part series).
πΈ phrack.org β an awesome collection of articles from several respected hackers and other thinkers.
πΈ Practical-Ethical-Hacking-Resources β compilation of resources from TCMβs Udemy Course.
Your daily knowledge and news [TOC]
Your daily knowledge and news [TOC]
βͺοΈ RSS Readers
πΈ Feedly β organize, read and share what matters to you.
πΈ Inoreader β similar to feedly with a support for filtering what you fetch from rss.
βͺοΈ IRC Channels
πΈ #hackerspaces β hackerspace IRC channels.
βͺοΈ Security
πΈ The Hacker News β leading news source dedicated to promoting awareness for security experts and hackers.
πΈ Latest Hacking News β provides the latest hacking news, exploits and vulnerabilities for ethical hackers.
πΈ Security Newsletter β security news as a weekly digest (email notifications).
πΈ Google Online Security Blog β the latest news and insights from Google on security and safety on the Internet.
πΈ Qualys Blog β expert network security guidance and news.
πΈ DARKReading β connecting the Information Security Community.
πΈ Darknet β latest hacking tools, hacker news, cybersecurity best practices, ethical hacking & pen-testing.
πΈ publiclyDisclosed β public disclosure watcher who keeps you up to date about the recently disclosed bugs.
πΈ Reddit β Hacking β a subreddit dedicated to hacking and hackers.
πΈ Packet Storm β information security services, news, files, tools, exploits, advisories and whitepapers.
πΈ Sekurak β about security, penetration tests, vulnerabilities and many others (PL/EN).
πΈ nf.sec β basic aspects and mechanisms of Linux operating system security (PL).
Reference
Iβm a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I am working at Cotocus. I blog tech insights at DevOps School, travel stories at Holiday Landmark, stock market tips at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at I reviewed , and SEO strategies at Wizbrand.
Do you want to learn Quantum Computing?
Please find my social handles as below;
Rajesh Kumar Personal Website
Rajesh Kumar at YOUTUBE
Rajesh Kumar at INSTAGRAM
Rajesh Kumar at X
Rajesh Kumar at FACEBOOK
Rajesh Kumar at LINKEDIN
Rajesh Kumar at PINTEREST
Rajesh Kumar at QUORA
Rajesh Kumar at WIZBRAND