The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
-
Updated
Jan 29, 2018
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.
Web server directory and file fuzzer
Current parsers to help convert some popular pentest tools to CSV onevault file formats.
Simple python script for Information Gathering.
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
sslscan inside docker
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event s…
Script that allows you to get your reverse quickly.
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
A simple script for extract all vulnerable plugins form the wordpress site.
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Okadminfinder rewrite by Xnuvers007
A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)
Probe and discover HTTP pathname using brute-force methodology and filtered by specific word or 2 words at once
A simple PHP web backdoor allows you to retrieve directory/file contents and upload file(s) from the local machine or remote URL.
A tool for recovering server credentials from a pgadmin4 database
Frontend for project sangkuriang
A script to build either Blackarch, Kali linux or ParrotOS Docker container which has the ability to provide desktop environment access either via X2Go or VNC
linuxprivchecker.py -- a Linux Privilege Escalation Check Script
Add a description, image, and links to the pentest-tools topic page so that developers can more easily learn about it.
To associate your repository with the pentest-tools topic, visit your repo's landing page and select "manage topics."