initstring/pentest-methodology initstring/pentest-methodology

  • Stars
    star
    167
  • Rank 226,635 (Top 5 %)
  • Language
  • License
    MIT License
  • Created over 5 years ago
  • Updated about 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
initstring/pentest-methodology
github

initstring

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Short checklists for penetration testing methodology

Pentest Methodology

Short checklists to keep your pentests on track.

They are:

  • Not exhaustive
  • Not overly descriptive
  • Not a replacement for PTES or OWASP

Thanks

All of these items are things I picked up here and there, and it would be tough to credit every item. Here are some people/sources I definitely owe thanks to:

  • All of the authors of the listed tools.
  • 3xocyte for his wealth of knowledge in destroying AD environments.

Current Status

I am not currently working as a pentester! This means it's unlikely I will be updating this project any time soon. Feel free to submit PRs, though, I will happily review and merge when appropriate.

More Repositories

1

cloud_enum

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
Python
1,360
star
2

passphrase-wordlist

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
Python
1,093
star
3

linkedin2username

OSINT Tool: Generate username lists for companies on LinkedIn
Python
1,049
star
4

dirty_sock

Linux privilege escalation exploit via snapd (CVE-2019-7304)
Python
644
star
5

evil-ssdp

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
Python
322
star
6

uptux

Linux privilege escalation checks (systemd, dbus, socket fun, etc)
Python
284
star
7

lxd_root

Linux privilege escalation via LXD
Python
125
star
8

lyricpass

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.
Python
75
star
9

pentest-tools

General stuff for pentesting - password cracking, phishing, automation, Kali, etc.
Python
71
star
10

switcheroo

Universal LAN-based SSRF Attack Primitive
Python
16
star
11

pyshell

Simple netcat-like binary for Windows, created with python and py2exe.
Python
10
star
12

MemPG

Memorable Passphrase Generator - create secure random passphrases that sound like sentences
Python
3
star