A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

A Framework meant for the exploitation of iOS devices.

Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.

Moodle community-based vulnerability scanner

Most Responder's configuration power in your hand.

Fast HTTP access control testing tool designed to discover 401 and 403 bypass vulnerabilities

Token impersonation. Administrator to SYSTEM. No tools required.

Anonymous MAC address rotation tool for pentesting & OPSEC

Live Exploit is a powerful and versatile Python-based tool designed for Capture The Flag (CTF) challenges, exploit development, and vulnerability research.

Burp Suite extensions if you want to teach Burp a new Transport-Encoding

CAGE Framwork Hacking Tools Pack – A Penetration Testing Framework

Scan a network for IP addresses that have hostnames

yet another log4shell scanner

NotesToCommands is a powerful command template experience, allowing users to instantly execute terminal commands, with varying arguments, grouped into sections in a note or file. It was originally created for pentesting uses, to avoid the needed remembrance and retyping of sets of commands for various attacks.

A DHCP rogue server using scapy

a python DoS (denial-of-service) tool that uses proxies to anonymize your attack

The PII Sniffer is a Python-based extension for the Burp Suite tool that, through intercepted HTTP requests, can detect sensitive data such as CPF numbers, phone numbers, important dates, and card numbers.

Treefy is a Python project whose main purpose is to recreate the directory and file structure of a server, as closely as possible to the original organization.

An open-source Python based AI Powered Penetration testing Agent

MidnightRAT is a lightweight, encrypted, Python-based red team payload designed to simulate APT-style Command & Control behavior, including polymorphism, adaptive sleep, and remote command execution for use in ethical hacking, red teaming, and adversary emulation labs.