Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Sample pentest report provided by TCM Security

The recursive internet scanner for hackers. 🧡

Arsenal is just a quick inventory and launcher for hacking programs

Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.

A high-performance port spoofing tool built in Rust. Confuse port scanners with dynamic service emulation across all ports. Features customizable signatures, efficient async handling, and easy tra…

AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.

Common User Passwords Profiler (CUPP)

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

Navigate the CVE jungle with ease.

See all the files you have ever touched in a Git repo

Next-Gen Stealer written in Go. Stealing from Discord, Chromium-Based & Firefox-Based Browsers, Crypto Wallets and more, from every user on every disk. (PoC. For educational purposes only)

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Repository of Bug-Bounty Writeups

An open-source network stresser tool but it's Hatsune Miku

Comfortably monitor your Internet traffic 🕵️‍♂️

Open source templates you can use to bootstrap your security programs

Ohayou(おはよう), HTTP load generator, inspired by rakyll/hey with tui animation.