Autonomous Penetration Testing AI Agent
Interactive console tool for pentesting MCP servers via JSON-RPC 2.0
The first open-source AI agent built for offensive security. Autonomous pentesting from your terminal.
Pensar CI - Automated continuous pentesting integrated with your CI/CD pipeline
ThreatWinds Pentest CLI - Container-based pentesting toolkit
Aircrack-ng suite wrapper for pentesting - to automate deauthentications attack (to catch handshakes)
MCP server for LLM-driven security testing via HTTPToolkit — capture analysis, mutation-based replay, audit trails for mobile and electron app pentesting
AI-powered security review plugin for pentesting web applications with NestJS, Rust, Vite support and DDoS/Stress testing - Added BeEzz_QL for GraphQL
Modern WebApp Pentesting Suite
CLI tool for recording and uploading pentesting operations to the Boxs platform
MCP server that auto-obfuscates sensitive data (IPs, hostnames, emails, API keys, PII) so Claude never sees real client data during pentesting
MCP server for generating high-quality offensive security datasets for LLM fine-tuning. Produces realistic multi-turn pentesting conversations with tool calls, reasoning chains, and professional reports.
Production-ready Terminal Viewer component for live pentesting sessions with ANSI color support, WebSocket streaming, and multiple themes
Terminal Pentesting Knowledge Quiz
AI-powered CLI tool for automated bug fixing - initialize with voria --init
Claude Code skill for Application Security Posture Management — runs Semgrep SAST and optional Shannon pentesting, generates ASPM_SCAN.md reports
A fast, cross-platform AI CLI assistant with ask and agent modes for shell tasks, file operations, and cybersecurity workflows.
Zigbee stack designed to run on a host and communicate with a radio co-processor (RCP)
A simple utility to extract directory and file names from BurpSuite XML files for the purpose of creating wordlists used in pentesting.
Shannon-style AI Agent Curriculum - Self-testing platform with 15 grades from basics to advanced AI pentesting, prompt injection, and jailbreak defense
pwnkit-cli npm launcher — downloads and runs the standalone binary on first invocation.
Nmap Executor: Scan ports, detect services, OS and run NSE scripts on a host or IP. Designed for both manual workflows and AI Agent tools in n8n.
MCP server for searching HackTricks documentation
Advanced DRM inspection toolkit
A blazingly fast file finder, organizer, and pentesting tool for Linux/Unix systems with netcat-style combined flags
Pentesting crates.io itsself
This is a pentest test package<XSS>
Cheers
A zero dependency network penetration test tool.
Local-first application security agent for live pentesting, verified findings, and an embedded dashboard.
Production-grade MCP server development toolkit
Web scanner built for actual pentests. Fast, modular, Rust.
Local-first pentest report generator: Markdown findings -> HTML/JSON/DOCX/PDF.
A subdomain enumeration tool leveraging diverse techniques, designed for advanced pentesting operations
Attack path graph for penetration testing - AI-powered external memory for security assessments
Turn HAR traffic captures into a deterministic business graph
pentesting framework based on mushin
This toolset's primarily intent is to enhance the interactive ruby shell (IRB) with functions which may be useful for pentests. Besides of typical hash and conversion functions it also has more complex functions like cisco_7-decoder or a nice hex-output.
A tool to perform penetration tests on web applications
idb is a tool to simplify some common tasks for iOS pentesting and research. Please see https://github.com/dmayer/idb for more details on installation and usage.
A set of DNS utilities that are useful for pentesters (or just general playing).
Generate RootCA for ZAP/BurpSuite/Android/iOS/Etc..
Ownlan is used to test a network against MITM attacks, and then to secure it.
The ultimate WinRM shell for hacking/pentesting
Hacker's Note - A command-line tool creates gitbook compatible structure for pentest and read team projects. Helps security professionals to organize their notes in a gitbook structure for PT/RT engagements.
Fuzzing payload generators for pentesting
Custom Arch Linux installer designed for security assessments and pentesting.
Profesional tool for pentest wi-fi
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.