Acceptance test framework for web applications
Support
Quality
Security
License
Reuse
Web path scanner
Support
Quality
Security
License
Reuse
Generate massive amounts of fake data in the browser and node.js
Support
Quality
Security
License
Reuse
A Node.js tool to automate end-to-end web testing.
Support
Quality
Security
License
Reuse
Fast web fuzzer written in Go
Support
Quality
Security
License
Reuse
MeterSphere 一站式开源持续测试平台,为软件质量保驾护航。搞测试,就选 MeterSphere!
Support
Quality
Security
License
Reuse
Test spies, stubs and mocks for JavaScript.
Support
Quality
Security
License
Reuse
Powerful .NET library for benchmarking
Support
Quality
Security
License
Reuse
GoMock is a mocking framework for the Go programming language.
Support
Quality
Security
License
Reuse
A collection of samples demonstrating different frameworks and techniques for automated testing
Support
Quality
Security
License
Reuse
Python version of the Playwright testing and automation library.
Support
Quality
Security
License
Reuse
E2E test framework for Angular apps
Support
Quality
Security
License
Reuse
OSS-Fuzz - continuous fuzzing for open source software.
Support
Quality
Security
License
Reuse
E-mails, subdomains and names Harvester - OSINT
Support
Quality
Security
License
Reuse
Highly opinionated mocking framework for PHP 5.3+
Support
Quality
Security
License
Reuse
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Support
Quality
Security
License
Reuse
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
Support
Quality
Security
License
Reuse
The Browser Exploitation Framework Project
Support
Quality
Security
License
Reuse
Fast subdomains enumeration tool for penetration testers
Support
Quality
Security
License
Reuse
Six Degrees of Domain Admin
Support
Quality
Security
License
Reuse
An open-source post-exploitation framework for students, researchers and developers.
Support
Quality
Security
License
Reuse
Credentials recovery project
Support
Quality
Security
License
Reuse
PHP 5.x support for random_bytes() and random_int()
Support
Quality
Security
License
Reuse
BDD / TDD assertion framework for node.js and the browser that can be paired with any testing framework.
Support
Quality
Security
License
Reuse
Go testing in the browser. Integrates with `go test`. Write behavioral tests in Go.
Support
Quality
Security
License
Reuse
Directory/File, DNS and VHost busting tool written in Go
Support
Quality
Security
License
Reuse
Fast passive subdomain enumeration tool.
Support
Quality
Security
License
Reuse
hydra
Support
Quality
Security
License
Reuse
Damn Vulnerable Web Application (DVWA)
Support
Quality
Security
License
Reuse
A Multithreaded Fork of Redis
Support
Quality
Security
License
Reuse
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Support
Quality
Security
License
Reuse
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
Support
Quality
Security
License
Reuse
A microbenchmark support library
Support
Quality
Security
License
Reuse
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Support
Quality
Security
License
Reuse
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
Support
Quality
Security
License
Reuse
A Ruby/Rack web server built for parallelism
Support
Quality
Security
License
Reuse
p
public-pentesting-reportsby juliocesarfort
CSS 
7336 Version:Current
License: No License (No License)
License: No License (No License)A list of public penetration test reports published by several consulting firms and academic security groups.
Support
Quality
Security
License
Reuse
Assertions to validate method input/output with nice error messages.
Support
Quality
Security
License
Reuse
:card_index: A simple fake data generator for C#, F#, and VB.NET. Based on and ported from the famed faker.js.
Support
Quality
Security
License
Reuse
Testcontainers is a Java library that supports JUnit tests, providing lightweight, throwaway instances of common databases, Selenium web browsers, or anything else that can run in a Docker container.
Support
Quality
Security
License
Reuse
Apache JMeter open-source load testing tool for analyzing and measuring the performance of a variety of services
Support
Quality
Security
License
Reuse
Empire is a PowerShell and Python post-exploitation agent.
Support
Quality
Security
License
Reuse
Docker images for Selenium Grid
Support
Quality
Security
License
Reuse
Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
Support
Quality
Security
License
Reuse
Assertions to validate method input/output with nice error messages.
Support
Quality
Security
License
Reuse
External Attack Surface Management Platform
Support
Quality
Security
License
Reuse
OneForAll是一款功能强大的子域收集工具
Support
Quality
Security
License
Reuse
Infection Monkey - An open-source adversary emulation platform
Support
Quality
Security
License
Reuse
Sampling CPU and HEAP profiler for Java featuring AsyncGetCallTrace + perf_events
Support
Quality
Security
License
Reuse
Web Pentesting Fuzz 字典,一个就够了。
Support
Quality
Security
License
Reuse
c
capybaraby teamcapybara
Acceptance test framework for web applications
Ruby 9832Updated: 10 mo ago License: Permissive (MIT)
9832Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
d
dirsearchby maurosoria
Web path scanner
Python 9792Updated: 10 mo ago License: No License (No License)
9792Updated: 10 mo ago License: No License (No License)Support
Quality
Security
License
Reuse
f
fakerby faker-js
Generate massive amounts of fake data in the browser and node.js
TypeScript 9659Updated: 10 mo ago License: Proprietary (Proprietary)
9659Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
t
testcafeby DevExpress
A Node.js tool to automate end-to-end web testing.
JavaScript 9650Updated: 10 mo ago License: Permissive (MIT)
9650Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
f
Support
Quality
Security
License
Reuse
m
metersphereby metersphere
MeterSphere 一站式开源持续测试平台,为软件质量保驾护航。搞测试,就选 MeterSphere!
Java 9367Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
9367Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
s
sinonby sinonjs
Test spies, stubs and mocks for JavaScript.
JavaScript 9309Updated: 11 mo ago License: Proprietary (Proprietary)
9309Updated: 11 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
B
BenchmarkDotNetby dotnet
Powerful .NET library for benchmarking
C# 9063Updated: 10 mo ago License: Permissive (MIT)
9063Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
m
mockby golang
GoMock is a mocking framework for the Go programming language.
Go 8974Updated: 10 mo ago License: Permissive (Apache-2.0)
8974Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
t
testing-samplesby android
A collection of samples demonstrating different frameworks and techniques for automated testing
Java 8857Updated: 10 mo ago License: Permissive (Apache-2.0)
8857Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
p
playwright-pythonby microsoft
Python version of the Playwright testing and automation library.
Python 8828Updated: 10 mo ago License: Permissive (Apache-2.0)
8828Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
p
protractorby angular
E2E test framework for Angular apps
JavaScript 8761Updated: 3 y ago License: Permissive (MIT)
8761Updated: 3 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
o
oss-fuzzby google
OSS-Fuzz - continuous fuzzing for open source software.
Shell 8733Updated: 10 mo ago License: Permissive (Apache-2.0)
8733Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
t
theHarvesterby laramies
E-mails, subdomains and names Harvester - OSINT
Python 8676Updated: 10 mo ago License: No License (No License)
8676Updated: 10 mo ago License: No License (No License)Support
Quality
Security
License
Reuse
p
prophecyby phpspec
Highly opinionated mocking framework for PHP 5.3+
PHP 8544Updated: 12 mo ago License: Permissive (MIT)
8544Updated: 12 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
x
xrayby chaitin
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
JavaScript 8531Updated: 10 mo ago License: Proprietary (Proprietary)
8531Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
G
GTFOBins.github.ioby GTFOBins
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
HTML 8470Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
8470Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
b
beefby beefproject
The Browser Exploitation Framework Project
JavaScript 8466Updated: 11 mo ago License: No License (No License)
8466Updated: 11 mo ago License: No License (No License)Support
Quality
Security
License
Reuse
S
Sublist3rby aboul3la
Fast subdomains enumeration tool for penetration testers
Python 8345Updated: 10 mo ago License: Strong Copyleft (GPL-2.0)
8345Updated: 10 mo ago License: Strong Copyleft (GPL-2.0)Support
Quality
Security
License
Reuse
B
BloodHoundby BloodHoundAD
Six Degrees of Domain Admin
PowerShell 8338Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
8338Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
b
byobby malwaredllc
An open-source post-exploitation framework for students, researchers and developers.
Python 8323Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
8323Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
L
LaZagneby AlessandroZ
Credentials recovery project
Python 8235Updated: 10 mo ago License: Weak Copyleft (LGPL-3.0)
8235Updated: 10 mo ago License: Weak Copyleft (LGPL-3.0)Support
Quality
Security
License
Reuse
r
random_compatby paragonie
PHP 5.x support for random_bytes() and random_int()
PHP 8085Updated: 1 y ago License: Permissive (MIT)
8085Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
c
chaiby chaijs
BDD / TDD assertion framework for node.js and the browser that can be paired with any testing framework.
JavaScript 7902Updated: 10 mo ago License: Permissive (MIT)
7902Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
g
goconveyby smartystreets
Go testing in the browser. Integrates with `go test`. Write behavioral tests in Go.
Go 7784Updated: 10 mo ago License: Proprietary (Proprietary)
7784Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
g
gobusterby OJ
Directory/File, DNS and VHost busting tool written in Go
Go 7747Updated: 10 mo ago License: Permissive (Apache-2.0)
7747Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
s
subfinderby projectdiscovery
Fast passive subdomain enumeration tool.
Go 7741Updated: 10 mo ago License: Permissive (MIT)
7741Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
t
Support
Quality
Security
License
Reuse
D
DVWAby digininja
Damn Vulnerable Web Application (DVWA)
PHP 7692Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
7692Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
K
KeyDBby Snapchat
A Multithreaded Fork of Redis
C++ 7659Updated: 10 mo ago License: Permissive (BSD-3-Clause)
7659Updated: 10 mo ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
e
evilginx2by kgretzky
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Go 7634Updated: 10 mo ago License: Permissive (BSD-3-Clause)
7634Updated: 10 mo ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
w
wpscanby wpscanteam
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
Ruby 7607Updated: 10 mo ago License: Proprietary (Proprietary)
7607Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
b
benchmarkby google
A microbenchmark support library
C++ 7601Updated: 10 mo ago License: Permissive (Apache-2.0)
7601Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
n
nishangby samratashok
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
PowerShell 7572Updated: 10 mo ago License: Proprietary (Proprietary)
7572Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
f
fuzzdbby fuzzdb-project
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
PHP 7455Updated: 10 mo ago License: No License (No License)
7455Updated: 10 mo ago License: No License (No License)Support
Quality
Security
License
Reuse
p
pumaby puma
A Ruby/Rack web server built for parallelism
Ruby 7412Updated: 11 mo ago License: Permissive (BSD-3-Clause)
7412Updated: 11 mo ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
p
public-pentesting-reportsby juliocesarfort
A list of public penetration test reports published by several consulting firms and academic security groups.
CSS 7336Updated: 10 mo ago License: No License (No License)
7336Updated: 10 mo ago License: No License (No License)Support
Quality
Security
License
Reuse
a
assertby webmozarts
Assertions to validate method input/output with nice error messages.
PHP 7334Updated: 10 mo ago License: Permissive (MIT)
7334Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
B
Bogusby bchavez
:card_index: A simple fake data generator for C#, F#, and VB.NET. Based on and ported from the famed faker.js.
C# 7300Updated: 10 mo ago License: Proprietary (Proprietary)
7300Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
t
testcontainers-javaby testcontainers
Testcontainers is a Java library that supports JUnit tests, providing lightweight, throwaway instances of common databases, Selenium web browsers, or anything else that can run in a Docker container.
Java 7139Updated: 10 mo ago License: Permissive (MIT)
7139Updated: 10 mo ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
j
jmeterby apache
Apache JMeter open-source load testing tool for analyzing and measuring the performance of a variety of services
Java 7093Updated: 10 mo ago License: Permissive (Apache-2.0)
7093Updated: 10 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
E
Empireby EmpireProject
Empire is a PowerShell and Python post-exploitation agent.
PowerShell 6970Updated: 11 mo ago License: Permissive (BSD-3-Clause)
6970Updated: 11 mo ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
d
docker-seleniumby SeleniumHQ
Docker images for Selenium Grid
Shell 6799Updated: 10 mo ago License: Proprietary (Proprietary)
6799Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
h
hypothesisby HypothesisWorks
Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
Python 6750Updated: 10 mo ago License: Proprietary (Proprietary)
6750Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
a
assertby webmozart
Assertions to validate method input/output with nice error messages.
PHP 6548Updated: 3 y ago License: Permissive (MIT)
6548Updated: 3 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
S
Sn1perby 1N3
External Attack Surface Management Platform
Shell 6531Updated: 10 mo ago License: Proprietary (Proprietary)
6531Updated: 10 mo ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
O
OneForAllby shmilylty
OneForAll是一款功能强大的子域收集工具
Python 6493Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
6493Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
m
monkeyby guardicore
Infection Monkey - An open-source adversary emulation platform
Python 6193Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)
6193Updated: 10 mo ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
a
async-profilerby async-profiler
Sampling CPU and HEAP profiler for Java featuring AsyncGetCallTrace + perf_events
C++ 6193Updated: 11 mo ago License: Permissive (Apache-2.0)
6193Updated: 11 mo ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
f
fuzzDictsby TheKingOfDuck
Web Pentesting Fuzz 字典,一个就够了。
Python 6008Updated: 10 mo ago License: No License (No License)
6008Updated: 10 mo ago License: No License (No License)Support
Quality
Security
License
Reuse