Sitadel is a python based web application scanner. It’s flexible and has many different scanning options. It can get a full fingerprint...
Winpayloads is a python based tool which combines some of the Powershell Empire features along with the metasploit framework to create windows...
Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments for Joomla based sites. Based in perl,...
PrivilegeEsc-Linux is a simple script which checks the security on a Linux machine. It can run many different options, such as for...
NoSQLMap is an open source python based tool, designed to audit and automate injection attacks on NoSQL databases, such as Mongo DB...
MassExploitConsole is a python based easy-to-use cli tool for executing exploits. It has a collection of exploits to execute, built-in scanner for...
Kalitorify is a shell based script for Kali Linux. It uses iptables and TOR to create a transparent proxy. In simple terms,...
Knock is a python based tool for enumerating subdomains on a targeted domain. You can use a custom wordlist and also you...
Based on python, the Veil-Framework is one of the most popular tools for Anti-Virus evasion. You can generate many different Metasploit payloads...
The Evil Access Point (AP) attack has been around for a long time. There are several ways to create this attack and...
Galileo is a free web application auditing framework that can perform various penetration testing tasks, such as information gathering, fingerprinting, bruteforcing, injection...
Xerosploit is a python-based toolkit for creating efficient Man In The Middle attacks which combines the power of bettercap and nmap. The...
Red Hawk is an open source tool that is used for information gathering and certain vulnerability scanning. Red Hawk detects Content Management...
Recon-ng is a reconnaissance framework that can perform open source web based information gathering for a given target. Recon-ng is loaded with...
PhishX is a python tool that can capture user credentials using a spear phishing attack. Spear phishing is a targeted form of...
Wapiti is an open source tool that scans web applications for multiple vulnerabilities including data base injections, file disclosures, cross site scripting,...
Yuki Chan is an open source tool that automates some of the information gathering and web application penetration testing process. The tool...
Pythem is a python framework used for performing various security tests on networks and web applications. These include scanning, web crawling, web...
Spiderfoot is an open source tool used for reconnaissance purpose. The tool is capable of gathering useful information about the target host...
Wifiphisher is an open source framework that can be utilised for red team engagements for wireless networks through Man in the Middle...
Uniscan is an open source tool capable of scanning web applications for critical vulnerabilities, such as sql injection, blind sql injection, cross...