OWASP OWTF Logo

OWASP OWTF

0
Free
Visit Website

OWASP OWTF is a project focused on penetration testing efficiency and alignment of security tests to security standards like the OWASP Testing Guide (v3 and v4), the OWASP Top 10, PTES and NIST. Pentesters can have more time to see the big picture, think out of the box, find, verify, and combine vulnerabilities, investigate complex vulnerabilities, perform more tactical fuzzing, and demonstrate true impact despite short timeframes. The tool is highly configurable, allowing anyone to create simple plugins or add new tests without development experience. However, understanding and experience are required to correctly interpret tool output and decide what to investigate further.

FEATURES

ALTERNATIVES

AEM (Adobe Experience Manager) Hacker is a tool designed to help security researchers and penetration testers identify and exploit vulnerabilities in AEM-based systems.

A cheat sheet providing examples of creating reverse shells for penetration testing.

An open-source penetration testing framework for social engineering with custom attack vectors.

A collection of payloads and methodologies for web pentesting.

Create a vulnerable active directory for testing various Active Directory attacks.

A post-exploitation framework designed to operate covertly on heavily monitored environments.

Full-featured C2 framework for stealthy communication and control on web servers.

A comprehensive guide for customizing Cobalt Strike's C2 profiles to enhance stealth and operational security.