{"id":49834031,"url":"https://github.com/therealilyas/pentest-toolkit","last_synced_at":"2026-05-13T23:34:26.386Z","repository":{"id":322234744,"uuid":"1087740419","full_name":"therealilyas/pentest-toolkit","owner":"therealilyas","description":"🔥 Professional Pentesting Toolkit | 100+ Tools | Bug Bounty | Ethical Hacking | Kali Linux | Network Security | FREE","archived":false,"fork":false,"pushed_at":"2025-11-21T13:31:33.000Z","size":1227,"stargazers_count":18,"open_issues_count":2,"forks_count":5,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-11-21T15:27:09.649Z","etag":null,"topics":["bash-scripts","bug-bounty-tools","ctf-tools","cybersecurity-tools","ethical-hacking","free-hacking-tools","kali-linux","metasploit-alternative","network-recon","network-security","offensive-security","penetration-testing","pentesting","python-pentesting","python-security","red-team","security-automation","security-scanner","vulnerability-assessment","web-security"],"latest_commit_sha":null,"homepage":"https://github.com/therealilyas/pentest-toolkit","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/therealilyas.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-11-01T14:48:13.000Z","updated_at":"2025-11-21T14:47:29.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/therealilyas/pentest-toolkit","commit_stats":null,"previous_names":["therealilyas/pentest-toolkit"],"tags_count":2,"template":false,"template_full_name":null,"purl":"pkg:github/therealilyas/pentest-toolkit","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/therealilyas%2Fpentest-toolkit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/therealilyas%2Fpentest-toolkit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/therealilyas%2Fpentest-toolkit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/therealilyas%2Fpentest-toolkit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/therealilyas","download_url":"https://codeload.github.com/therealilyas/pentest-toolkit/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/therealilyas%2Fpentest-toolkit/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33004348,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-13T13:14:54.681Z","status":"ssl_error","status_checked_at":"2026-05-13T13:14:51.610Z","response_time":115,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bash-scripts","bug-bounty-tools","ctf-tools","cybersecurity-tools","ethical-hacking","free-hacking-tools","kali-linux","metasploit-alternative","network-recon","network-security","offensive-security","penetration-testing","pentesting","python-pentesting","python-security","red-team","security-automation","security-scanner","vulnerability-assessment","web-security"],"created_at":"2026-05-13T23:34:21.037Z","updated_at":"2026-05-13T23:34:26.381Z","avatar_url":"https://github.com/therealilyas.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Penetration Testing Toolkit - Professional Security Assessment Suite\r\n\r\n[![Python 3.8+](https://img.shields.io/badge/Python-3.8%2B-blue.svg)](https://www.python.org/)\r\n[![Bash](https://img.shields.io/badge/Bash-5.0%2B-green.svg)](https://www.gnu.org/software/bash/)\r\n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)\r\n[![GitHub Stars](https://img.shields.io/github/stars/therealilyas/pentest-toolkit?style=social)](https://github.com/therealilyas/pentest-toolkit/stargazers)\r\n\r\n\r\n[![Star History Chart](https://api.star-history.com/svg?repos=therealilyas/pentest-toolkit\u0026type=Date)](https://star-history.com/#therealilyas/pentest-toolkit\u0026Date)\r\n\r\n```\r\n██████╗ ███████╗███╗   ██╗████████╗███████╗███████╗████████╗██╗  ██╗██╗████████╗\r\n██╔══██╗██╔════╝████╗  ██║╚══██╔══╝██╔════╝██╔════╝╚══██╔══╝██║ ██╔╝██║╚══██╔══╝\r\n██████╔╝█████╗  ██╔██╗ ██║   ██║   █████╗  ███████╗   ██║   █████╔╝ ██║   ██║   \r\n██╔═══╝ ██╔══╝  ██║╚██╗██║   ██║   ██╔══╝  ╚════██║   ██║   ██╔═██╗ ██║   ██║   \r\n██║     ███████╗██║ ╚████║   ██║   ███████╗███████║   ██║   ██║  ██╗██║   ██║   \r\n╚═╝     ╚══════╝╚═╝  ╚═══╝   ╚═╝   ╚══════╝╚══════╝   ╚═╝   ╚═╝  ╚═╝╚═╝   ╚═╝   \r\n```\r\n\r\n**Advanced Penetration Testing Toolkit · Python \u0026 Bash · Built for the field**\r\n\r\n[![Python 3.8+](https://img.shields.io/badge/Python-3.8%2B-blue?style=flat-square\u0026logo=python)](https://www.python.org/)\r\n[![Bash 5.0+](https://img.shields.io/badge/Bash-5.0%2B-green?style=flat-square\u0026logo=gnu-bash)](https://www.gnu.org/software/bash/)\r\n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow?style=flat-square)](LICENSE)\r\n[![GitHub Stars](https://img.shields.io/github/stars/therealilyas/pentest-toolkit?style=flat-square\u0026logo=github)](https://github.com/therealilyas/pentest-toolkit/stargazers)\r\n[![Version](https://img.shields.io/badge/Version-3.2.1-red?style=flat-square)](https://github.com/therealilyas/pentest-toolkit/releases)\r\n[![Maintained](https://img.shields.io/badge/Maintained-Yes-brightgreen?style=flat-square)](https://github.com/therealilyas/pentest-toolkit/commits/main)\r\n\r\n*One toolkit. Every phase. From recon to report.*\r\n\r\n\u003c/div\u003e\r\n\r\n---\r\n\r\n## 🔍 What is PentestKit?\r\n\r\nPentestKit is a battle-tested, all-in-one penetration testing framework designed for security professionals who need results fast. It wraps 100+ industry tools into two clean interfaces — a Python suite for automation and reporting, and a Bash menu for hands-on interactive use.\r\n\r\nWhether you're doing a quick bug bounty recon or a full-scope red team engagement, PentestKit covers you from initial reconnaissance through to professional report delivery.\r\n\r\n---\r\n\r\n## ⚡ Features at a Glance\r\n\r\n| Module | What It Does |\r\n|---|---|\r\n| 🔭 **Reconnaissance** | Subdomain enumeration, DNS analysis, WHOIS, port scanning |\r\n| 🕷️ **Web Security** | SQL injection, XSS, directory fuzzing, API endpoint discovery |\r\n| 🔒 **SSL/TLS Analysis** | Certificate checks, cipher auditing, protocol downgrade detection |\r\n| 📡 **Network Assessment** | Service fingerprinting, OS detection, banner grabbing |\r\n| 📋 **Reporting** | Auto-generated HTML/PDF/JSON reports with CVSS scoring |\r\n| 🤖 **Automation** | Chain scans, schedule jobs, output to structured formats |\r\n\r\n---\r\n\r\n## 🚀 Getting Started\r\n\r\n### One-liner Install\r\n\r\n```bash\r\ngit clone https://github.com/therealilyas/pentest-toolkit.git \u0026\u0026 cd pentest-toolkit \u0026\u0026 sudo bash install.sh\r\n```\r\n\r\n### Manual Setup\r\n\r\n```bash\r\n# Clone the repo\r\ngit clone https://github.com/therealilyas/pentest-toolkit.git\r\ncd pentest-toolkit\r\n\r\n# Install system dependencies\r\nsudo apt update \u0026\u0026 sudo apt install -y python3 nmap nikto sqlmap gobuster\r\n\r\n# Install Python packages\r\npip3 install -r requirements.txt\r\n```\r\n\r\n---\r\n\r\n## 🐍 Python Version — Automated Pipeline\r\n\r\nThe Python script is built for automation. Feed it a target, get back a full report.\r\n\r\n```bash\r\n# Basic scan\r\npython3 pentestkit.py https://target.com\r\n\r\n# Custom output directory\r\npython3 pentestkit.py https://target.com -o ./results\r\n\r\n# Verbose output\r\npython3 pentestkit.py https://target.com -v\r\n\r\n# Generate PDF report\r\npython3 pentestkit.py https://target.com --report pdf\r\n```\r\n\r\n---\r\n\r\n## 💻 Bash Version — Interactive Menu\r\n\r\nPrefer clicking through a menu? The Bash version has you covered with guided scan profiles.\r\n\r\n```bash\r\nsudo ./pentestkit.sh\r\n```\r\n\r\n```\r\n╔══════════════════════════════════╗\r\n║       PentestKit v3.2.1          ║\r\n║  Select your scan profile:       ║\r\n║                                  ║\r\n║  [1] Quick Scan      ~5  min     ║\r\n║  [2] Normal Scan     ~15 min     ║\r\n║  [3] Deep Scan       ~45 min     ║\r\n║  [4] Custom Scan                 ║\r\n║  [5] View Last Report            ║\r\n║  [0] Exit                        ║\r\n╚══════════════════════════════════╝\r\n```\r\n\r\n---\r\n\r\n## 🗂️ Project Structure\r\n\r\n```\r\npentest-toolkit/\r\n├── pentestkit.py          # Main Python entry point\r\n├── pentestkit.sh          # Interactive Bash menu\r\n├── install.sh             # One-command installer\r\n├── python/                # Python modules\r\n│   ├── recon.py\r\n│   ├── web_scan.py\r\n│   ├── vuln_scan.py\r\n│   └── reporter.py\r\n├── bash/                  # Bash modules \u0026 helpers\r\n├── archive/               # Legacy scripts \u0026 experiments\r\n└── media/screenshots/     # Tool screenshots \u0026 demos\r\n```\r\n\r\n---\r\n\r\n## 🎯 Who Is This For?\r\n\r\n- **Bug Bounty Hunters** — Automate your recon workflow, find more targets, faster\r\n- **Pentesters** — Comprehensive assessment suite from recon to report\r\n- **Red Team Operators** — Simulate real-world attacker TTPs\r\n- **CTF Players** — Fast enumeration and exploitation in competition scenarios\r\n- **Students** — Learn offensive security with real, working tools\r\n\r\n---\r\n\r\n## 🖥️ Supported Platforms\r\n\r\n| Platform | Python | Bash |\r\n|---|:---:|:---:|\r\n| Kali Linux | ✅ | ✅ |\r\n| Parrot OS | ✅ | ✅ |\r\n| Ubuntu 20.04+ | ✅ | ✅ |\r\n| Debian 10+ | ✅ | ✅ |\r\n| macOS | ✅ | ⚠️ |\r\n| Windows (WSL2) | ✅ | ✅ |\r\n\r\n---\r\n\r\n## 🗺️ Roadmap\r\n\r\n- [ ] 🤖 AI-powered vulnerability triage\r\n- [ ] 🐳 Official Docker image\r\n- [ ] 🔌 Metasploit integration module\r\n- [ ] 📦 WordPress / CMS-specific scan profiles\r\n- [ ] 🔔 Real-time Slack/Discord notifications\r\n- [ ] 🧪 Headless browser support for modern SPAs\r\n\r\n---\r\n\r\n## 🤝 Contributing\r\n\r\nGot an improvement? Found a bug? PRs are welcome.\r\n\r\n```bash\r\n# Fork → Clone → Branch → PR\r\ngit checkout -b feature/your-cool-idea\r\n```\r\n\r\nSee [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines.\r\n\r\n---\r\n\r\n## ⚠️ Legal Disclaimer\r\n\r\nThis toolkit is intended **strictly for authorized security testing**. Only use it against systems you own or have explicit written permission to test. Unauthorized access to computer systems is a criminal offense in most jurisdictions. The authors accept no liability for misuse.\r\n\r\n**Always hack ethically. Always hack legally.**\r\n\r\n---\r\n\r\n\u003cdiv align=\"center\"\u003e\r\n\r\nBuilt by security researchers, for security researchers.\r\n\r\nIf this tool saved you time, drop a ⭐ — it means a lot.\r\n\r\n[Issues](https://github.com/therealilyas/pentest-toolkit/issues) · [Discussions](https://github.com/therealilyas/pentest-toolkit/discussions) · [Releases](https://github.com/therealilyas/pentest-toolkit/releases)\r\n\r\n\u003c/div\u003e\r\n\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftherealilyas%2Fpentest-toolkit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftherealilyas%2Fpentest-toolkit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftherealilyas%2Fpentest-toolkit/lists"}