| Type | Name | Description | Star | Tags | Badges |
|---|---|---|---|---|---|
| Army-Knife | Metasploit | The world’s most used penetration testing framework |  |
pentest |
    |
| Proxy | EvilProxy | A ruby http/https proxy to do EVIL things. |  |
mitmproxy |
|
| Recon | intrigue-core | Discover Your Attack Surface |  |
|
|
| Recon | Hunt3r | Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework |  |
|
|
| Scanner | DeadFinder | Find dead-links (broken links) |  |
broken-link |
|
| Scanner | wpscan | WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites. |  |
|
|
| Scanner | XSpear | Powerfull XSS Scanning and Parameter analysis tool&gem |  |
xss |
|
| Scanner | arachni | Web Application Security Scanner Framework |  |
|
|
| Exploit | XXEinjector | Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods. |  |
xxe |
|
| Exploit | beef | The Browser Exploitation Framework Project |  |
xss |
|
| Utils | Ronin | Ronin is a free and Open Source Ruby toolkit for security research and development. |  |
payload http pentest |
|
| Utils | hbxss | Security test tool for Blind XSS |  |
xss blind-xss |
|
| Utils | oxml_xxe | A tool for embedding XXE/XML exploits into different filetypes |  |
|
|
| Env | Glue | Application Security Automation |  |
|
|
| Env | pentest-env | Pentest environment deployer (kali linux + targets) using vagrant and chef. |  |
pentest |
|