From 7e6b9b05a49f9e9c2ee9c76ca432e7cf69408ea6 Mon Sep 17 00:00:00 2001 From: trimstray Date: Mon, 4 Mar 2019 09:26:06 +0100 Subject: [PATCH] updated 'Pentesters arsenal tools' - signed-off-by: trimstray --- README.md | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/README.md b/README.md index 3cbfbc7..c3abf3c 100644 --- a/README.md +++ b/README.md @@ -747,6 +747,13 @@ Linux Security Expert - trainings, howtos, checklists, security tools an   :small_orange_diamond: Nikto2 - web server scanner which performs comprehensive tests against web servers for multiple items.
  :small_orange_diamond: sqlmap - tool that automates the process of detecting and exploiting SQL injection flaws.
  :small_orange_diamond: Faraday - an Integrated Multiuser Pentest Environment.
+  :small_orange_diamond: Photon - incredibly fast crawler designed for OSINT.
+  :small_orange_diamond: XSStrike - most advanced XSS detection suite.
+  :small_orange_diamond: John The Ripper - is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, and OpenVMS.
+  :small_orange_diamond: hashcat - world's fastest and most advanced password recovery utility.
+  :small_orange_diamond: p0f - is a tool to identify the players behind any incidental TCP/IP communications.
+  :small_orange_diamond: Recon-ng - is a full-featured Web Reconnaissance framework written in Python.
+  :small_orange_diamond: exploitdb - searchable archive from The Exploit Database.
  :small_orange_diamond: ctf-tools - some setup scripts for security research tools.
  :small_orange_diamond: security-tools - collection of small security tools created mostly in Python. CTFs, pentests and so on.
  :small_orange_diamond: fuzzdb - dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.