The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.

Automated pentest framework for offensive security experts

This is a multi-use bash script for Linux systems to audit wireless networks.

The LAZY script will make your life easier, and of course faster.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Linux enumeration tool for pentesting and CTFs with verbosity levels

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Bash post exploitation toolkit

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

Useful tools and scripts during Penetration Testing engagements

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Automatically Launch Google Hacking Queries Against A Target Domain

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Quickly analyze and reverse engineer Android packages

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

An automated pentest tool

A script that automates generation of OpenSSL reverse shells

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

*Frequently Updated. Sifter is a osint, recon & vulnerability scanner. It combines a plethara of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote and local hosts, and scan for the 'blue' vulnerabilities within microsft and if unpatched, exploit them. It uses tools like blackwidow and konan for webdir enumeration and attack surface mapping rapidly using ASM.

Intelligence and Reconnaissance Package/Bundle installer.

A fast DOM based XSS vulnerability scanner with simplicity.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

A wrapper for Nmap to automate penetration testing

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

A £10 Rubber Ducky USB HID! A USB device which emulates a keyboard and automates key entry.

An automated Wireless RogueAP MITM attack framework.

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Script to automate PUT HTTP method exploitation to get shell