Your daily toolbox as a pentester

This page summarizes the projects mentioned and recommended in the original post on /r/cybersecurity
Web Security Pentesting Hacking DNS

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • hackingtool

    ALL IN ONE Hacking Tool For Hackers

    • Hacking Tool : this GitHub provides a huge software toolbox holding many hacking tools

  • securitytools

    a curated, categorised collection of useful projects ๐Ÿ‘จโ€๐Ÿ‘ฉโ€๐Ÿ‘งโ€

    • Security Tools : another GitHub gathering a lot of hacking tools

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • SQLMap

    Automatic SQL injection and database takeover tool

    • Sqlmap is useful to search SQL injections

  • testssl.sh

    Testing TLS/SSL encryption anywhere on any port

    • testssl is useful to search for TLS issues

  • feroxbuster

    A fast, simple, recursive content discovery tool written in Rust.

    • feroxbuster to do some web app browsing (you have also gobuster)

  • gobuster

    Directory/File, DNS and VHost busting tool written in Go

    • feroxbuster to do some web app browsing (you have also gobuster)

  • mimikatz

    A little tool to play with Windows security

    • mimikatz is a tool useful to work on Windows security, for example to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  • BloodHound

    Six Degrees of Domain Admin

    • BlookdHound is useful to reveal the hidden and often unintended relationships within an Active Directory or Azure environment

  • awesome-hacker-search-engines

    A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

    • Awsome Hacker Search Engines : this GitHub gathers web sites to search some exploits and tools, depending on some hacking categories

  • SecLists

    SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

    • Sec Lists : this GitHub provides a lots of lists useful during penetration testing (like common usernames, passwords, URLs, sensitive data patterns, etc ...)

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • RustScan โ€“ The Modern Port Scanner

    1 project | news.ycombinator.com | 25 Aug 2023

  • I need GoBuster on my OpenSUSE VM

    1 project | /r/openSUSE | 11 Jun 2023

  • Is Rustscan tool allowed in CEH Practical exam?

    1 project | /r/CEH | 28 May 2023

  • gobuster vhost help

    1 project | /r/hackthebox | 19 May 2023

  • what Do YOU Recommend?

    2 projects | /r/hacking | 20 Apr 2023