reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Git All the Payloads! A collection of web attack payloads.

An ArchLinux based distribution for penetration testers and security researchers.

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Find exploits in local and online databases instantly

A fast DOM based XSS vulnerability scanner with simplicity.

Quickly analyze and reverse engineer Android packages

Automatically Launch Google Hacking Queries Against A Target Domain

Open Redirect Payloads

Jam all wifi clients/routers.

Script for generating revshells

An automated approach to performing recon for bug bounty hunting and penetration testing.

A tool to automate penetration tests

Script collection to bypass Network Access Control (NAC, 802.1x)

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

🧰 Multi Tool Kubernetes Pentest Image