Penetration Testing

Fine penetration tests for fine websites

A world-class dynamic instrumentation toolkit. Observe and reprogram running programs on Windows, macOS, GNU/Linux, iOS, watchOS, tvOS, Android, FreeBSD, and QNX.

The #1 cybersecurity upskilling platform. Hack The Box gives individuals, businesses and universities the tools they need to continuously improve their cybersecurity capabilities — all in one place.

PortSwigger offers tools for web application security, testing, & scanning. Choose from a range of security tools, & identify the very latest vulnerabilities.

Learn Web Penetration Testing The Right Way. Agreat resource for learning about web application security and ways how it can be subverted.

Home of Kali Linux, an Advanced Penetration Testing Linux distribution used for Penetration Testing, Ethical Hacking and network security assessments.

Handmade USB cables with an advance WiFi implant inside. Designed to allow Red Teams to emulate sophisticated attack scenarios previously only capable with $20,000 cables.

A WordPress vulnerability database for WordPress core security vulnerabilities, plugin vulnerabilities and theme vulnerabilities.

Portable Multi-tool Device for Geeks. Based on ultra low power STM32 MCU for daily exploration of access control systems and radio protocols. Open source and customizable

Wordlists that are up to date and effective against the most popular technologies on the internet.

A curated list of Windows binaries that can used to bypass local security restrictions in misconfigured systems.

A curated list of Unix binaries that can used to bypass local security restrictions in misconfigured systems.

The Smash the Stack Wargaming Network is an ethical hacking environment that simulates real-world software vulnerabilities using challenges, which we call wargames.

Exploits for Penetration Testers, Researchers, and Ethical Hackers

An evolving list of strings which have a high probability of causing issues when used as user-input data. This is intended for use in helping both automated and manual QA testing;

The world's best penetration testing software. Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness;

The Cyber Swiss Army Knife. A web app for carrying out all manner of "cyber" operations within a web browser: encryption, encoding, compression & data analysis.

Deep Reinforcement Learning instrumenting bettercap for WiFi pwning.