Python tools for penetration testers

Most advanced XSS scanner.

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Advanced reconnaissance utility

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

Web Application Security Scanner Framework

Collection of pentesting scripts

Scripts I use during pentest engagements.

Scripts, tools, and proof-of-concepts to aid in a penetration test.

Just a repo of random Python scripts to get pentesters started with the Python language on engagements.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

A cross-platform protocol library to communicate with iOS devices

🛰️ Represent any GraphQL API as an interactive graph

Off The Grid Messenger

Tutorials for getting started with Pwntools

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

A collection of android security related resources

This hosts the original version of the PScout Android permission mapping tool

Static Code Analysis for Smali files

Control Flow Graph Scanning for Android

Scripted Local Linux Enumeration & Privilege Escalation Checks

Plugins for Androguard's androlyze

Reverse engineering and pentesting for Android applications

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.