Category Archives: Pentesting

php-malware-finder – Detect Potentially Malicious PHP

PHP-malware-finder does its very best to detect obfuscated/dodgy code as well as files using PHP functions often used in malwares/ webshells.

WPScan – Black Box WordPress Security Scanner

WPScan is a free, for non-commercial use, black box WordPress security scanner written for security professionals and blog maintainers to test

Bettercap – Swiss Army Knife for Network Recon and MITM

Bettercap is a powerful, easily extensible and portable framework written in Go which aims to offer to security researchers, red teamers

Sublist3r – Fast Subdomains Enumeration Tool

Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collect

Droopescan – Plugin-based Scanner for Several CMSs

Droopescan is a plugin-based scanner that aids security researchers in identifying issues with several CMS. Usage of droopescan for attacking targets

sqlmap – Automatic SQL Injection Tool

sqlmap is an advance open source tool for penetration testing that automate the process of searching and performing SQL injection.

Archery – Centralize Vulnerability Assessment Framework

Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities.