hax0rg1rl Goto Github PK

pentest-resources

pentest-tools

Custom pentesting tools

pentesting-bible

This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to arrive until the number of links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.

pentmenu

A bash script for recon and DOS attacks

phantalyzer

A PhantomJS script for running Wappalyzer over many sites using a headless Webkit browser

phishery

An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector

photon

Crawler for hackers.

php-errata

Check function documentation for assistance on code reviews

php-jpeg-injector

Injects php payloads into jpeg images

php-static-analysis-tools

A reviewed list of useful PHP static analysis tools

php-vulnerability-audit-cheatsheet

This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabilities you generally find with that function.

phpggc

phpsploit

Stealth post-exploitation framework

pmd

png-idat-payload-generator

Generate a PNG with a payload embedded in the IDAT chunk (Based off of previous concepts and code -- credit in README)

poc

Various PoCs

pocs

Proof of Concepts for CVE-2016–3714

poi-slinger

Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan

postwoman

👽 API request builder - A free, fast, and beautiful alternative to Postman https://postwoman.io

powerfuzzer

powerfuzzer : Highly automated, fully customizable HTTP protocol based application fuzzer

powersploit

PowerSploit - A PowerShell Post-Exploitation Framework

princeprocessor

Standalone password candidate generator using the PRINCE algorithm

privatecollaborator

A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate

privilege-escalation

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

probable-wordlists

Wordlists sorted by probability originally created for password generation and testing

prototype-pollution-nsec18

Content released at NorthSec 2018 for my talk on prototype pollution

prowler

AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+100). Official CIS for AWS guide: https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf

proxenet

The REAL^WONLY Hacker-Friendly proxy for web application pentests.

proxy-list

Get PROXY List that gets updated everyday

pub

police line - do not cross...