Build software better, together

berylliumsec / nebula

AI-powered penetration testing assistant for automating recon, note-taking, and vulnerability analysis.

python ai cybersecurity vulnerability-scanners vulnerability-assessment ethical-hacking security-automation penetration-testing-framework penetration-testing-tool cybersecurity-tools llm ethical-hacking-tool vulnerability-assesment-tools ai-powered-penetration-testing-tool ai-powered-ethical-hacking-tool

Updated Dec 2, 2025
Python

oryxlabs / PolarDNS

Star

PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.

penetration-testing dns-server dns-client dns-violation dns-amplification dns-resolver vulnerability-research dns-injection dns-analysis dns-cache-poisoning dns-poisoning dns-fuzz-server malformations dns-servers dns-response dns-misconfiguration penetration-testing-tool dns-reflection dns-test

Updated Jul 8, 2025
Python

antoninoLorenzo / AI-OPS

Star

Penetration Testing AI Assistant based on open source LLMs.

ai chatbot hacking hacking-tools ai-assistant penetrationtesting penetration-testing-tool llms ai-hacking

Updated Apr 9, 2025
Python

cyberaz0r / badmoodle

Star

Moodle community-based vulnerability scanner

python modular python3 bug-bounty moodle bugbounty pentest-tool vulnerability-scanner security-tool pentesting-tool penetration-testing-tool

Updated Jun 21, 2023
Python

Barcha is your Swiss‑Army knife for SQL Injection reconnaissance 🔍. Written in Go, it automates: Shodan enumeration of SSL hosts 🕵️‍♂️ Liveness & redirect checks (ignores bad certs) 🔄 Automated Ghauri tests for each host 🛡️ SQLite logging of every scan 🔖

penetration-testing vulnerability bugbounty vulnerability-detection vulnerability-management vulnerability-scanners vulnerability-assessment vulnerability-scanning penetration-testing-framework penetration-testing-tools bugbountytips bugbounty-platform bugbounty-tool bugbountytricks bugbounty-tools bugbountyhunting penetration-testing-tool bugbountyautomation bugbountytools

Updated Apr 18, 2025
Go

irfan-sec / Aura-sec

Star

Aura-sec is a simple, fast, and extensible network port scanner built with Python. Designed for security professionals, students, and enthusiasts, Aura-sec makes it easy to scan network hosts for open ports and services. The tool is lightweight and user-friendly, making it ideal for both learning and practical network security tasks.

port port-scanner aura open-source-project network-scanner vulnerability-assessment infosectools penetration-testing-tool cybersecurity-tools scanner-tool vulnerabilites-scanner aura-sec aurasec

Updated Feb 26, 2026
Python

kraloveckey / ghostpack-binaries

Star

🆘 Precompiled binaries for Ghostpack and other for Windows and Linux.

Updated Feb 25, 2026
PowerShell

suhailm-in / HuntingPro

Star

Hunting Pro is a powerful subdomain enumeration and URL extraction tool designed for security professionals.

vulnerability-assessment reconnaissance subdomain-enumeration bugbounty-tool penetration-testing-tool url-extraction

Updated Jul 30, 2024
Python

txuswashere / Penetration-Testing

Star

A collection of awesome penetration testing and offensive cybersecurity resources.

lists list hacking penetration-testing awesome-list penetration hacking-tool awesome-lists awesome-resources penetration-test hacking-tools hackingtools penetration-tests penetration-testing-tools penetration-testers penetration-tester penetrationtesting penetration-testing-tool

Updated Mar 1, 2024

outisdz / reversync

Star

reversync is a secure, asynchronous Python reverse shell framework using SSL and asyncio for remote command execution.

python security backdoor malware hacking listener cybersecurity remote-access red-team c2 reverse-shell-in-python penetration-testing-tool ethical-hacking-tool

Updated Jul 15, 2025
Python

ImKKingshuk / MisCORS

Sponsor

Star

MisCORS - Unleash CORS Misconfigurations Like a Digital Phantom! 🌐✨ Harness the power of MisCORS to silently unveil vulnerabilities in Cross-Origin Resource Sharing. Stealthily analyze web defenses, expose misconfigurations, and empower your security journey. 🕵️‍♂️🔓 Dive into the shadows of web security with MisCORS. #WebSecurity #CORSExposure

cors penetration-testing cors-proxy ethical-hacking cross-origin-resource-sharing web-application-security vulnerability-scanner hacking-tools cors-misconfigurations cors-scanner cors-vulnerability cors-misconfiguration-scanner penetration-testing-tool web-security-tool cors-hack

Updated Jun 15, 2024
Shell

ebrasha / abdal-js2pdf-injector

Star

Abdal JS2PDF Injector is a powerful tool for injecting JavaScript code into PDF files. Designed for penetration testers, PDF developers, and cybersecurity researchers to test, simulate, and manipulate client-side PDF behavior.

hack penetration-testing-tool ebrasha abdal js2pdf injecting-javascript-into-pdf pdf-javascript-injection-tool cybersecurity-researchers

Updated May 18, 2025
C#

tusharpatil41 / WebSubdomain-Finder-hack-tool

Star

A Python-based subdomain reconnaissance tool designed for ethical penetration testing. It discovers hidden subdomains and collects technical intelligence to assist in security analysis.

python cybersecurity penetration-testing python-security information-gathering security-tools reconnaissance subdomain-enumeration information-gathering-tool subdomain-finder penetration-testing-tool cybersecurity-tools

Updated Jan 11, 2026
Python

eliaz5536 / NetAuto

Star

Network Reconnaissance tool for enumerating services, protocols and ports.

automation web tool network enumeration penetration-testing pentesting network-scanning penetration-testing-tool

Updated Jun 13, 2024
Shell

ItsAJ1005 / Advance_Web_Security_Scanner

Star

The Advanced Web Vulnerability Scanner is a modular, Python-based tool designed to scan websites for common application layer web vulnerabilities.

python application-layer-security penetration-testing-tool

Updated May 3, 2025
Python

ZetaXII / MVMRapp

Star

Progetto di Tesi Triennale UNISA: sviluppo di un client per l'analisi di vulnerabilità da report di scansione (Nessus, Nmap, Openvas, Owasp Zap). Include un'app Android che interagisce col server MVMR per caricare file XML e consente l'esportazione del report in PDF.

android java vulnerability-scanners androidstudio androidapp vulnerability-analysis penetration-testing-tool