Free
Payloads All The Things
A subdomain enumeration tool for penetration testers and security researchers.
Offensive Security
Offensive security testing uncovers vulnerabilities through simulated attacks.
Try these 279 AI Offensive Security Tools
Free
PEDA
A credit card/magstripe spoofer that can emulate any magnetic stripe or credit card wirelessly.
Free
Penetration Testing Execution Standard (PTES)
CLI tool for offensive and defensive security assessments on the Joi validator library with a wide range of attacks.
Free
Penetration Testing Practice Lab - Vulnerable Apps/Systems
A blog post discussing the often overlooked dangers of CSV injection in applications.
Free
Penetration Testing Practice Profile
A tool that visits suspected phishing pages, takes screenshots, and extracts interesting files.
Free
Pentoo Linux
A C/C++ tool for remote process injection, supporting x64 and x86 operations, with system call macros generated by SysWhispers script.
Free
PEzor
Phrack Magazine is a digital magazine that focuses on computer security and hacking, featuring articles, interviews, and tutorials on various topics related to computer security.
Free
Pentest Lab
Inceptor is a template-driven framework for evading Anti-Virus and Endpoint Detection and Response solutions, allowing users to create custom evasion techniques and test their security controls.
Free
PETEP (PEnetration TEsting Proxy)
A tool for interacting with the MSBuild API, enabling malicious activities and evading detection.
Free
PenTesters Framework (PTF)
Open-source project for building instrumented environments to simulate attacks and test detections.
1.0
Free
PHPsploit
Weaponize Word documents with PowerShell Empire using the Microsoft DDE exploit.
Free
Phrack Magazine
Boofuzz is a network protocol fuzzing tool that aims to fuzz everything
Free
Preparing for Red Team at PRCCDC 2015
Emulates Docker HTTP API with event logging and AWS deployment script.
Free
Practical Guide to NTLM Relaying in 2017
FOCA is a tool used to find metadata and hidden information in scanned documents, with capabilities to analyze various file types and extract EXIF information.
Free
Project Zero iPhone Messaging Tools
MiniCPS is a framework for Cyber-Physical Systems real-time simulation with support for physical process and control devices simulation, and network emulation.
Free
Projectdiscovery.io | Chaos
FOCA is a tool used to find metadata and hidden information in scanned documents, with capabilities to analyze various file types and extract EXIF information.
Free
Proxmark 3
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang for efficient and secure communication.
Free
Pupy
Collection of penetration testing scripts for AWS with a focus on reconnaissance.
Free
PwnAuth
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
Free
Pwntools
Charlotte is an undetected C++ shellcode launcher for executing shellcode with stealth.
Free
Pwndrop
A scripting engine for interacting with GraphQL endpoints for pentesting purposes.