Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments for Joomla based sites. Based in perl,...
NoSQLMap is an open source python based tool, designed to audit and automate injection attacks on NoSQL databases, such as Mongo DB...
Red Hawk is an open source tool that is used for information gathering and certain vulnerability scanning. Red Hawk detects Content Management...
Recon-ng is a reconnaissance framework that can perform open source web based information gathering for a given target. Recon-ng is loaded with...
PhishX is a python tool that can capture user credentials using a spear phishing attack. Spear phishing is a targeted form of...
Wapiti is an open source tool that scans web applications for multiple vulnerabilities including data base injections, file disclosures, cross site scripting,...
Yuki Chan is an open source tool that automates some of the information gathering and web application penetration testing process. The tool...
Pythem is a python framework used for performing various security tests on networks and web applications. These include scanning, web crawling, web...
Spiderfoot is an open source tool used for reconnaissance purpose. The tool is capable of gathering useful information about the target host...
Wifiphisher is an open source framework that can be utilised for red team engagements for wireless networks through Man in the Middle...
Uniscan is an open source tool capable of scanning web applications for critical vulnerabilities, such as sql injection, blind sql injection, cross...
Habu is an open source penetration testing toolkit that can perform various penetration testing tasks related to networks. These include ARP poisoning,...
Morpheus is an open source framework that can launch multiple attacks on the network using applications, such as ettercap, msgsnarf, tcpkill, and...
XSStrike is an open source tool that detects Cross Site Scripting vulnerabilities and exploits them. The tool is equipped with a powerful...
Leviathan is an open source toolkit that can be used for auditing networks and web applications. The types of audits that can...
Zeus scanner is an open source tool used for reconnaissance and vulnerability assessments of web applications. The tool is equipped with a...
Vega is a GUID based open source tool used for testing the security of web applications. The tool can be used to...
TIDoS framework is a python based toolkit that performs a comprehensive audit of the web applications. The toolkit is packed with a...
Raccoon is an offensive security tool known for reconnaissance and information gathering. The tool can extract useful information about the target host,...
Tplmap is a python tool that can find code injection and Server Side Templates Injection (SSTI) vulnerabilities by using sandbox escape techniques....
W3af is a GUI based framework that helps in auditing and identifying vulnerabilities in web applications. The tool is loaded with a...