Open-source AI penetration testing tool to find and fix your app’s vulnerabilities.
-
Updated
Jun 30, 2026 - Python
Open-source AI penetration testing tool to find and fix your app’s vulnerabilities.
HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly bridge LLMs with real-world offensive security capabilities.
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
💀 Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp Collaborator or Interact.sh
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
All In One Web Recon
PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows.
Open-source security research tool for identifying origin IP exposure of websites protected by Cloudflare and similar reverse proxy services.
Automatic SSTI detection tool with interactive interface
🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
An XSS exploitation command-line interface and payload generator.
SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB or Dehashed and obtain Google account information via GHunt.
Convolutional neural network for analyzing pentest screenshots
Username enumeration and password spraying tool aimed at Microsoft O365.
A deauth attack that disconnects all devices from the target wifi network (2.4Ghz & 5Ghz), WPA3 also supported (PMF not tested)
JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
A Network Packet Sniffing tool developed in Python 3.
WiFi Penetration Testing Guide
A tool that allows you to search for vulnerable android devices across the world and exploit them.
NekoBot | Auto Exploiter With 500+ Exploit 2000+ Shell
Add a description, image, and links to the pentesting-tools topic page so that developers can more easily learn about it.
To associate your repository with the pentesting-tools topic, visit your repo's landing page and select "manage topics."