N8N pentest proof of concept node
No description provided.
Professional pentest MCP server with stdio + Streamable HTTP transports, bundled MCP Inspector launcher, bearer auth, SoW-aware reporting, and modern tooling across sniffing/finding/bruteforce/cracking/priv-esc/extraction workflows.
IntegSec Agentic Pentest MCP Proxy — enforce penetration testing engagement scope for AI agents
Permissionless, self-evolving offensive-security harness for Hermes Agent. Vibe-hack any target, ingest any tool, persist learnings across sessions. CTF / bug-bounty / pentest / research / education.
Check your website ( or any other website ) for common vulnerabilities.
Local-first pentest TUI agent. Ink + Ollama. Operator-grade terminal for authorized security testing.
Brosec - Pentest fu for bros
SquatGuard MCP Template for Python
ThreatWinds Pentest CLI - Container-based pentesting toolkit
create a new pentest project folder
When pentest hits the 'clouds'
AI agent CLI for automated penetration testing — powered by RedVeil
A hacky pentest lib to recursively map any property encoded in a string, change theirs values, and re-encode keeping the original encoding structure.
JavaScript Source Map Reverser - Extract original source code for pentest/bounty reconnaissance
Zero-dependency web component for scoping and estimating penetration testing engagements. Works in Hugo, React, Vue, or plain HTML.
pentest
Continuous visibility between pentest cycles. We watch your apps, APIs, and devices around the clock so nothing slips past.
A pentest reasoning engine (PentestThinking) that helps break down and analyze attack paths step by step.
Offline methodology engine and payload workshop for authorized penetration testing, CTF, security research, and education via MCP. STDIO or Streamable HTTP.
JEBAT Security CLI — Enterprise penetration testing, vulnerability scanning, and compliance auditing. Four-layer security: Hulubalang (audit), Pengawal (defense), Perisai (hardening), Serangan (pentest).
Fake libary for PenTest/CTF
Experimental pentest tool, DO NOT USE
Checks if your CI is vulnerable to an attack from lifecycle scripts
A zero dependency network penetration test tool.
A blazingly fast file finder, organizer, and pentesting tool for Linux/Unix systems with netcat-style combined flags
Pentesting crates.io itsself
This is a pentest test package<XSS>
Cheers
Local-first application security agent for live pentesting, verified findings, and an embedded dashboard.
Production-grade MCP server development toolkit
Web scanner built for actual pentests. Fast, modular, Rust.
Local-first pentest report generator: Markdown findings -> HTML/JSON/DOCX/PDF.
A subdomain enumeration tool leveraging diverse techniques, designed for advanced pentesting operations
Attack path graph for penetration testing - AI-powered external memory for security assessments
Turn HAR traffic captures into a deterministic business graph
Full-automated dynamic vulnerability scanning tool for Ruby on Rails project!
pentesting framework based on mushin
This toolset's primarily intent is to enhance the interactive ruby shell (IRB) with functions which may be useful for pentests. Besides of typical hash and conversion functions it also has more complex functions like cisco_7-decoder or a nice hex-output.
A tool to perform penetration tests on web applications
idb is a tool to simplify some common tasks for iOS pentesting and research. Please see https://github.com/dmayer/idb for more details on installation and usage.
A set of DNS utilities that are useful for pentesters (or just general playing).
Generate RootCA for ZAP/BurpSuite/Android/iOS/Etc..
Ownlan is used to test a network against MITM attacks, and then to secure it.
The ultimate WinRM shell for hacking/pentesting
Hacker's Note - A command-line tool creates gitbook compatible structure for pentest and read team projects. Helps security professionals to organize their notes in a gitbook structure for PT/RT engagements.
Fuzzing payload generators for pentesting
Custom Arch Linux installer designed for security assessments and pentesting.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.