From e2d8e1ea732ea0a3cfe8d92e7f634b620fc67816 Mon Sep 17 00:00:00 2001 From: Samar Dhwoj Acharya Date: Sat, 11 Feb 2017 10:59:47 -0600 Subject: [PATCH 01/20] remove no longer working md5crack site closes #100 --- README.md | 1 - 1 file changed, 1 deletion(-) diff --git a/README.md b/README.md index 9609b55..ac9fe6a 100644 --- a/README.md +++ b/README.md @@ -194,7 +194,6 @@ A collection of awesome penetration testing resources #### Crackers * [John the Ripper](http://www.openwall.com/john/) - Fast password cracker -* [Online MD5 cracker](http://www.md5crack.com/) - Online MD5 hash Cracker * [Hashcat](http://hashcat.net/hashcat/) - The more fast hash cracker #### Windows Utils From 3375b5e88b314860ad37abb15a0592b48c0ffe5b Mon Sep 17 00:00:00 2001 From: Herman Slatman Date: Sat, 11 Feb 2017 22:00:27 +0100 Subject: [PATCH 02/20] Add Bella for Mac OS --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index ac9fe6a..7ca5743 100644 --- a/README.md +++ b/README.md @@ -95,6 +95,7 @@ A collection of awesome penetration testing resources * [commix](https://github.com/stasinopoulos/commix) - Automated All-in-One OS Command Injection and Exploitation Tool * [routersploit](https://github.com/reverse-shell/routersploit) - Automated penetration testing software for router * [redsnarf] (https://github.com/nccgroup/redsnarf) - Post-exploitation tool for grabbing credentials +* [Bella](https://github.com/manwhoami/Bella) - Bella is a pure Python post-exploitation data mining & remote administration tool for Mac OS. #### Docker for Penetration Testing * `docker pull kalilinux/kali-linux-docker` [official Kali Linux](https://hub.docker.com/r/kalilinux/kali-linux-docker/) From 04a988c12f4ef035dddd3fe3e44e29d396a77e7a Mon Sep 17 00:00:00 2001 From: mnakamura1337 Date: Thu, 16 Feb 2017 15:06:48 +0900 Subject: [PATCH 03/20] "Web exploitation" capitalization fix --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 7ca5743..c8663e3 100644 --- a/README.md +++ b/README.md @@ -19,7 +19,7 @@ A collection of awesome penetration testing resources - [Network Tools](#network-tools) - [Wireless Network Tools](#wireless-network-tools) - [SSL Analysis Tools](#ssl-analysis-tools) - - [Web exploitation](#web-exploitation) + - [Web Exploitation](#web-exploitation) - [Hex Editors](#hex-editors) - [Crackers](#crackers) - [Windows Utils](#windows-utils) From 6731cee4b28c9ce6da0626db86ccbad7925787f2 Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Thu, 16 Feb 2017 01:39:01 -0500 Subject: [PATCH 04/20] Add GitTools, used for finding exposed source code for static analysis. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 7ca5743..6116c72 100644 --- a/README.md +++ b/README.md @@ -188,6 +188,7 @@ A collection of awesome penetration testing resources * [Kadabra](https://github.com/D35m0nd142/Kadabra) - Automatic LFI exploiter and scanner * [Kadimus](https://github.com/P0cL4bs/Kadimus) - LFI scan and exploit tool * [liffy](https://github.com/hvqzao/liffy) - LFI exploitation tool +* [GitTools](https://github.com/internetwache/GitTools) - Automatically find and download Web-accessible `.git` repositories #### Hex Editors * [HexEdit.js](https://hexed.it) - Browser-based hex editing From 952a3ad3578f82acf573be8530daa2e8404d7b0f Mon Sep 17 00:00:00 2001 From: coreb1t Date: Fri, 17 Feb 2017 11:16:52 +0100 Subject: [PATCH 05/20] README.md - Commix Tool added --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 5b04a19..742f290 100644 --- a/README.md +++ b/README.md @@ -189,6 +189,7 @@ A collection of awesome penetration testing resources * [Kadimus](https://github.com/P0cL4bs/Kadimus) - LFI scan and exploit tool * [liffy](https://github.com/hvqzao/liffy) - LFI exploitation tool * [GitTools](https://github.com/internetwache/GitTools) - Automatically find and download Web-accessible `.git` repositories +* [Commix](https://github.com/commixproject/commix) - Automated All-in-One OS command injection and exploitation tool #### Hex Editors * [HexEdit.js](https://hexed.it) - Browser-based hex editing From 7a6fdbf512ec2bdf8a819e3c6029fe36e19b4e88 Mon Sep 17 00:00:00 2001 From: coreb1t Date: Fri, 17 Feb 2017 11:25:29 +0100 Subject: [PATCH 06/20] Awesome Pentest Cheat Sheets Added --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 742f290..ad0673e 100644 --- a/README.md +++ b/README.md @@ -403,6 +403,7 @@ A collection of awesome penetration testing resources ### Awesome Lists * [Kali Linux Tools](http://tools.kali.org/tools-listing) - List of tools present in Kali Linux * [SecTools](http://sectools.org/) - Top 125 Network Security Tools +* [Pentest Cheat Sheets](https://github.com/coreb1t/awesome-pentest-cheat-sheets) - Awesome Pentest Cheat Sheets * [C/C++ Programming](https://github.com/fffaraz/awesome-cpp) - One of the main language for open source security tools * [.NET Programming](https://github.com/quozd/awesome-dotnet) - A software framework for Microsoft Windows platform development * [Shell Scripting](https://github.com/alebcay/awesome-shell) - Command-line frameworks, toolkits, guides and gizmos From 41fa05e8489571b3299a9efa4ecdb6787a2fa047 Mon Sep 17 00:00:00 2001 From: Alexandre ZANNI Date: Fri, 17 Feb 2017 17:55:54 +0100 Subject: [PATCH 07/20] add OS online ressources (#102) * add OS online ressources * add distrowatch * correct chcon deadlink for travis --- README.md | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index ad0673e..50c7b84 100644 --- a/README.md +++ b/README.md @@ -11,6 +11,7 @@ A collection of awesome penetration testing resources - [Exploit development](#exploit-development) - [Social Engineering Resources](#social-engineering-resources) - [Lock Picking Resources](#lock-picking-resources) + - [Operating Systems](#operating-systems) - [Tools](#tools) - [Penetration Testing Distributions](#penetration-testing-distributions) - [Basic Penetration Testing Tools](#basic-penetration-testing-tools) @@ -74,6 +75,11 @@ A collection of awesome penetration testing resources * [Schuyler Towne channel](https://www.youtube.com/user/SchuylerTowne/) - Lockpicking videos and security talks * [/r/lockpicking](https://www.reddit.com/r/lockpicking) - Resources for learning lockpicking, equipment recommendations. +#### Operating Systems +* [Security related Operating Systems @ Rawsec](http://rawsec.ml/en/security-related-os/) - Complete list of security related operating systems +* [Best Linux Penetration Testing Distributions @ CyberPunk](https://n0where.net/best-linux-penetration-testing-distributions/) - Description of main penetration testing distributions +* [Security @ Distrowatch](http://distrowatch.com/search.php?category=Security) - Website dedicated to talking about, reviewing and keeping up to date with open source operating systems + ### Tools #### Penetration Testing Distributions * [Kali](https://www.kali.org/) - A Linux distribution designed for digital forensics and penetration testing @@ -372,7 +378,7 @@ A collection of awesome penetration testing resources * [PhreakNIC](http://phreaknic.info/) - A technology conference held annually in middle Tennessee * [ShmooCon](http://shmoocon.org/) - An annual US east coast hacker convention * [CarolinaCon](http://www.carolinacon.org/) - An infosec conference, held annually in North Carolina -* [CHCon](https://chcon.nz) - Christchurch Hacker Con, Only South Island of New Zealand hacker con +* [CHCon](https://2016.chcon.nz/) - Christchurch Hacker Con, Only South Island of New Zealand hacker con * [SummerCon](http://www.summercon.org/) - One of the oldest hacker conventions, held during Summer * [Hack.lu](https://2016.hack.lu/) - An annual conference held in Luxembourg * [HITB](https://conference.hitb.org/) - Deep-knowledge security conference held in Malaysia and The Netherlands From 88b6363b64e4fe846b114a3dab3fa7a2339848bd Mon Sep 17 00:00:00 2001 From: SDGoodwin Date: Fri, 17 Feb 2017 17:21:23 -0500 Subject: [PATCH 08/20] add OSINT-Framework to OSInt List (#107) * add OSINT-Framework to OSInt List adding OSINT-Framework (http://osintframework.com/) to OSInt List * Update README.md --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 50c7b84..05928f9 100644 --- a/README.md +++ b/README.md @@ -245,6 +245,8 @@ A collection of awesome penetration testing resources * [Google-dorks](https://github.com/JohnTroony/Google-dorks) - Common google dorks and others you prolly don't know * [snitch](https://github.com/Smaash/snitch) - information gathering via dorks * [GooDork](https://github.com/k3170makan/GooDork) - Command line go0gle dorking tool +* [OSINT Framework](http://osintframework.com/) - Collection of various OSInt tools broken out by category. +* [Intel Techniques](https://inteltechniques.com/menu.html) - A collection of OSINT tools. Menu on the left can be used to navigate through the categories. #### Anonymity Tools * [Tor](https://www.torproject.org/) - The free software for enabling onion routing online anonymity From f023bbfbcf01c68f63e4b4851cc357465b524776 Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Mon, 20 Feb 2017 09:40:27 -0500 Subject: [PATCH 09/20] Add DataSploit. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 05928f9..0b113ea 100644 --- a/README.md +++ b/README.md @@ -247,6 +247,7 @@ A collection of awesome penetration testing resources * [GooDork](https://github.com/k3170makan/GooDork) - Command line go0gle dorking tool * [OSINT Framework](http://osintframework.com/) - Collection of various OSInt tools broken out by category. * [Intel Techniques](https://inteltechniques.com/menu.html) - A collection of OSINT tools. Menu on the left can be used to navigate through the categories. +* [DataSploit](https://github.com/upgoingstar/datasploit) - OSINT visualizer utilizing Shodan, Censys, Clearbit, EmailHunter, FullContact, and Zoomeye behind the scenes. #### Anonymity Tools * [Tor](https://www.torproject.org/) - The free software for enabling onion routing online anonymity From 964675a96f165a324c46f2fee23a367b713c4ad6 Mon Sep 17 00:00:00 2001 From: Samar Dhwoj Acharya Date: Mon, 20 Feb 2017 12:38:33 -0600 Subject: [PATCH 10/20] update appsecusa link --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 0b113ea..3801311 100644 --- a/README.md +++ b/README.md @@ -393,7 +393,7 @@ A collection of awesome penetration testing resources * [SkyDogCon](http://www.skydogcon.com/) - A technology conference in Nashville * [SECUINSIDE](http://secuinside.com) - Security Conference in [Seoul](https://en.wikipedia.org/wiki/Seoul) * [DefCamp](http://def.camp/) - Largest Security Conference in Eastern Europe, held anually in Bucharest, Romania -* [AppSecUSA](https://appsecusa.org/) - An annual conference organised by OWASP +* [AppSecUSA](https://2016.appsecusa.org/) - An annual conference organised by OWASP * [BruCON](http://brucon.org) - An annual security conference in Belgium * [Infosecurity Europe](http://www.infosecurityeurope.com/) - Europe's number one information security event, held in London, UK * [Nullcon](http://nullcon.net/website/) - An annual conference in Delhi and Goa, India From 6a14942a4e8c1de7e947527c05b39669251b4549 Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Wed, 22 Feb 2017 15:01:20 -0500 Subject: [PATCH 11/20] Add tplmap, an automated SSTI exploitation tool in the style of SQLmap --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 3801311..002b5af 100644 --- a/README.md +++ b/README.md @@ -184,6 +184,7 @@ A collection of awesome penetration testing resources #### Web exploitation * [WPScan](https://wpscan.org/) - Black box WordPress vulnerability scanner * [SQLmap](http://sqlmap.org/) - Automatic SQL injection and database takeover tool +* [tplmap](https://github.com/epinna/tplmap) - Automatic server-side template injection and Web server takeover tool * [weevely3](https://github.com/epinna/weevely3) - Weaponized web shell * [Wappalyzer](https://wappalyzer.com/) - Wappalyzer uncovers the technologies used on websites * [cms-explorer](https://code.google.com/archive/p/cms-explorer/) - CMS Explorer is designed to reveal the the specific modules, plugins, components and themes that various CMS driven web sites are running. From 3bf62af601b1c67ddaaadca1a343f2d749140a6e Mon Sep 17 00:00:00 2001 From: mnakamura1337 Date: Fri, 3 Mar 2017 09:52:59 +0900 Subject: [PATCH 12/20] Added "File Format Analysis Tools" section (+3 tools) --- README.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/README.md b/README.md index 002b5af..238c714 100644 --- a/README.md +++ b/README.md @@ -202,6 +202,11 @@ A collection of awesome penetration testing resources * [HexEdit.js](https://hexed.it) - Browser-based hex editing * [Hexinator](https://hexinator.com/) (commercial) - World's finest Hex Editor +#### File Format Analysis Tools +* [Kaitai Struct](http://kaitai.io/) - File formats and network protocols dissection language and web IDE, generating parsers in C++, C#, Java, JavaScript, Perl, PHP, Python, Ruby +* [Veles](https://codisec.com/veles/) - Binary data visualization and analysis tool +* [Hachoir](http://hachoir3.readthedocs.io/) - Python library to view and edit a binary stream as tree of fields and tools for metadata extraction + #### Crackers * [John the Ripper](http://www.openwall.com/john/) - Fast password cracker * [Hashcat](http://hashcat.net/hashcat/) - The more fast hash cracker From 3ddaa51f493d7e12b63ab58eb3c26a8e102f85e7 Mon Sep 17 00:00:00 2001 From: pathetiq Date: Fri, 10 Mar 2017 10:11:27 -0500 Subject: [PATCH 13/20] add hackfest conference --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 238c714..57eec4e 100644 --- a/README.md +++ b/README.md @@ -390,6 +390,7 @@ A collection of awesome penetration testing resources * [CHCon](https://2016.chcon.nz/) - Christchurch Hacker Con, Only South Island of New Zealand hacker con * [SummerCon](http://www.summercon.org/) - One of the oldest hacker conventions, held during Summer * [Hack.lu](https://2016.hack.lu/) - An annual conference held in Luxembourg +* [Hackfest](https://hackfest.ca) - Largest hacking conference in Canada * [HITB](https://conference.hitb.org/) - Deep-knowledge security conference held in Malaysia and The Netherlands * [Troopers](https://www.troopers.de) - Annual international IT Security event with workshops held in Heidelberg, Germany * [Hack3rCon](http://hack3rcon.org/) - An annual US hacker conference From e3ba0632c563747446bc259b41a2b5be05c2f015 Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Sat, 11 Mar 2017 00:37:00 -0500 Subject: [PATCH 14/20] Add wePWNise, Python tool to automate Windows/Office exploit mitigation. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 57eec4e..7f147bd 100644 --- a/README.md +++ b/README.md @@ -221,6 +221,7 @@ A collection of awesome penetration testing resources * [Bloodhound](https://github.com/adaptivethreat/Bloodhound/wiki) - A graphical Active Directory trust relationship explorer * [Empire](https://github.com/PowerShellEmpire/Empire) - Empire is a pure PowerShell post-exploitation agent * [Fibratus](https://github.com/rabbitstack/fibratus) - Tool for exploration and tracing of the Windows kernel +* [wePWNise](https://labs.mwrinfosecurity.com/tools/wepwnise/) - Generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application control and exploit mitigation software #### Linux Utils * [Linux Exploit Suggester](https://github.com/PenturaLabs/Linux_Exploit_Suggester) - Linux Exploit Suggester; based on operating system release number. From 502d1088a7da0c1094da9fd598022e7e678ccb7f Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Sat, 11 Mar 2017 01:06:39 -0500 Subject: [PATCH 15/20] Add King Phisher, a phishing campaign toolkit and C2 interface. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 7f147bd..b338d34 100644 --- a/README.md +++ b/README.md @@ -233,6 +233,7 @@ A collection of awesome penetration testing resources #### Social Engineering Tools * [SET](https://github.com/trustedsec/social-engineer-toolkit) - The Social-Engineer Toolkit from TrustedSec +* [King Phisher](https://github.com/securestate/king-phisher) - Phishing campaign toolkit used for creating and managing multiple simultaneous phishing attacks with custom email and server content #### OSInt Tools * [Maltego](http://www.paterva.com/web7/) - Proprietary software for open source intelligence and forensics, from Paterva. From 67fedb4d30cd3941ad173e9eed8216d7cefe2ba5 Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Sat, 11 Mar 2017 02:01:03 -0500 Subject: [PATCH 16/20] CTF section: Add RsaCtfTool, improve description of Pwntools. --- README.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index b338d34..b563416 100644 --- a/README.md +++ b/README.md @@ -277,7 +277,8 @@ A collection of awesome penetration testing resources * [dnSpy](https://github.com/0xd4d/dnSpy) - dnSpy is a tool to reverse engineer .NET assemblies #### CTF Tools -* [Pwntools](https://github.com/Gallopsled/pwntools) - CTF framework for use in CTFs +* [Pwntools](https://github.com/Gallopsled/pwntools) - Rapid exploit development framework built for use in CTFs +* [RsaCtfTool](https://github.com/sourcekris/RsaCtfTool) - Decrypt data enciphered using weak RSA keys, and recover private keys from public keys using a variety of automated attacks ### Books #### Penetration Testing Books From bec64da1a5b9470b7a59319d27eb2c0889411d07 Mon Sep 17 00:00:00 2001 From: Meitar Moscovitz Date: Mon, 13 Mar 2017 21:59:15 -0400 Subject: [PATCH 17/20] Add Buscador, a Linux VM pre-configured for online investigators. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index b563416..0e7ad0b 100644 --- a/README.md +++ b/README.md @@ -89,6 +89,7 @@ A collection of awesome penetration testing resources * [Pentoo](http://www.pentoo.ch/) - Security-focused livecd based on Gentoo * [BackBox](https://backbox.org/) - Ubuntu-based distribution for penetration tests and security assessments * [Parrot](https://www.parrotsec.org/) - A distribution similar to Kali, with multiple architecture +* [Buscador](https://inteltechniques.com/buscador/) - A Linux Virtual Machine that is pre-configured for online investigators * [Fedora Security Lab](https://labs.fedoraproject.org/en/security/) - Provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies. #### Basic Penetration Testing Tools From c82c1591609ba31c9c3b48e61ab005b39cc53616 Mon Sep 17 00:00:00 2001 From: Evan Lewis Date: Tue, 14 Mar 2017 00:25:26 -0400 Subject: [PATCH 18/20] Fixed broken metasploit link (#117) * Fixed a dead link 404 error in Docker subsection regarding the docker-metasploit tool * Fixed broken metasploit link Changed docker-metasploit link (and thus author) due to a 404 error in the prior link --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 0e7ad0b..d17b1eb 100644 --- a/README.md +++ b/README.md @@ -108,7 +108,6 @@ A collection of awesome penetration testing resources * `docker pull kalilinux/kali-linux-docker` [official Kali Linux](https://hub.docker.com/r/kalilinux/kali-linux-docker/) * `docker pull owasp/zap2docker-stable` - [official OWASP ZAP](https://github.com/zaproxy/zaproxy) * `docker pull wpscanteam/wpscan` - [official WPScan](https://hub.docker.com/r/wpscanteam/wpscan/) -* `docker pull pandrew/metasploit` - [docker-metasploit](https://hub.docker.com/r/pandrew/metasploit/) * `docker pull citizenstig/dvwa` - [Damn Vulnerable Web Application (DVWA)](https://hub.docker.com/r/citizenstig/dvwa/) * `docker pull wpscanteam/vulnerablewordpress` - [Vulnerable WordPress Installation](https://hub.docker.com/r/wpscanteam/vulnerablewordpress/) * `docker pull hmlio/vaas-cve-2014-6271` - [Vulnerability as a service: Shellshock](https://hub.docker.com/r/hmlio/vaas-cve-2014-6271/) @@ -121,6 +120,7 @@ A collection of awesome penetration testing resources * `docker pull citizenstig/nowasp` - [OWASP Mutillidae II Web Pen-Test Practice Application](https://hub.docker.com/r/citizenstig/nowasp/) * `docker pull bkimminich/juice-shop` - [OWASP Juice Shop](https://github.com/bkimminich/juice-shop#docker-container--) * `docker pull kalilinux/kali-linux-docker` - [Kali Linux Docker Image](https://www.kali.org/news/official-kali-linux-docker-images/) +* `docker pull remnux/metasploit` - [docker-metasploit](https://hub.docker.com/r/remnux/metasploit/) #### Vulnerability Scanners * [Nexpose](https://www.rapid7.com/products/nexpose/) - Vulnerability Management & Risk Management Software From 4d4cb89049224ca7c2ae651a24292f639d930fce Mon Sep 17 00:00:00 2001 From: Meitar M Date: Mon, 3 Apr 2017 17:35:54 -0400 Subject: [PATCH 19/20] Retitle "Crackers" to "Hash Cracking Tools" and add CeWL project. (#118) --- README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index d17b1eb..bfdec66 100644 --- a/README.md +++ b/README.md @@ -22,7 +22,7 @@ A collection of awesome penetration testing resources - [SSL Analysis Tools](#ssl-analysis-tools) - [Web Exploitation](#web-exploitation) - [Hex Editors](#hex-editors) - - [Crackers](#crackers) + - [Hash Cracking Tools](#hash-cracking-tools) - [Windows Utils](#windows-utils) - [Linux Utils](#linux-utils) - [DDoS Tools](#ddos-tools) @@ -208,9 +208,10 @@ A collection of awesome penetration testing resources * [Veles](https://codisec.com/veles/) - Binary data visualization and analysis tool * [Hachoir](http://hachoir3.readthedocs.io/) - Python library to view and edit a binary stream as tree of fields and tools for metadata extraction -#### Crackers +#### Hash Cracking Tools * [John the Ripper](http://www.openwall.com/john/) - Fast password cracker * [Hashcat](http://hashcat.net/hashcat/) - The more fast hash cracker +* [CeWL](https://digi.ninja/projects/cewl.php) - Generates custom wordlists by spidering a target's website and collecting unique words #### Windows Utils * [Sysinternals Suite](https://technet.microsoft.com/en-us/sysinternals/bb842062) - The Sysinternals Troubleshooting Utilities From 97cd0e85564f7ce97ac487aabc6fe06f09c69d9b Mon Sep 17 00:00:00 2001 From: tarrenj Date: Thu, 6 Apr 2017 18:06:15 -0400 Subject: [PATCH 20/20] Update README.md (#119) * Update README.md Adds recon-ng to OSINT tools * Update README.md Adds zmap to Network Tools * Revert "Update README.md" This reverts commit 51dad977b2f20a3868c9bddb6ca1a74fbb1e60ff. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index bfdec66..800d6fc 100644 --- a/README.md +++ b/README.md @@ -137,6 +137,7 @@ A collection of awesome penetration testing resources * [Vuls](https://github.com/future-architect/vuls) - Vulnerability scanner for Linux/FreeBSD, agentless, written in Go #### Network Tools +* [zmap](https://zmap.io/) - Open-source network scanner that enables researchers to easily perform Internet-wide network studies * [nmap](https://nmap.org/) - Free Security Scanner For Network Exploration & Security Audits * [pig](https://github.com/rafael-santiago/pig) - A Linux packet crafting tool * [tcpdump/libpcap](http://www.tcpdump.org/) - A common packet analyzer that runs under the command line