AI-powered penetration testing assistant for automating recon, note-taking, and vulnerability analysis.

PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.

Penetration Testing AI Assistant based on open source LLMs.

Moodle community-based vulnerability scanner

Barcha is your Swiss‑Army knife for SQL Injection reconnaissance 🔍. Written in Go, it automates: Shodan enumeration of SSL hosts 🕵️‍♂️ Liveness & redirect checks (ignores bad certs) 🔄 Automated Ghauri tests for each host 🛡️ SQLite logging of every scan 🔖

Aura-sec is a simple, fast, and extensible network port scanner built with Python. Designed for security professionals, students, and enthusiasts, Aura-sec makes it easy to scan network hosts for open ports and services. The tool is lightweight and user-friendly, making it ideal for both learning and practical network security tasks.

Hunting Pro is a powerful subdomain enumeration and URL extraction tool designed for security professionals.

🆘 Precompiled binaries for Ghostpack and other for Windows and Linux.

reversync is a secure, asynchronous Python reverse shell framework using SSL and asyncio for remote command execution.

MisCORS - Unleash CORS Misconfigurations Like a Digital Phantom! 🌐✨ Harness the power of MisCORS to silently unveil vulnerabilities in Cross-Origin Resource Sharing. Stealthily analyze web defenses, expose misconfigurations, and empower your security journey. 🕵️‍♂️🔓 Dive into the shadows of web security with MisCORS. #WebSecurity #CORSExposure

The Advanced Web Vulnerability Scanner is a modular, Python-based tool designed to scan websites for common application layer web vulnerabilities.

Network Reconnaissance tool for enumerating services, protocols and ports.

A collection of awesome penetration testing and offensive cybersecurity resources.

DOSTiger is a Python-based, configurable, command-line DOS tool for Denial of Service pentesting.

An experimental CLI tool for penetration testing

Progetto di Tesi Triennale UNISA: sviluppo di un client per l'analisi di vulnerabilità da report di scansione (Nessus, Nmap, Openvas, Owasp Zap). Include un'app Android che interagisce col server MVMR per caricare file XML e consente l'esportazione del report in PDF.

Abdal JS2PDF Injector is a powerful tool for injecting JavaScript code into PDF files. Designed for penetration testers, PDF developers, and cybersecurity researchers to test, simulate, and manipulate client-side PDF behavior.

Directory Reconnaissance tool for automating enumeration of subdomains for network scanning.