A collection of penetration testing tools, scripts, and wordlists created or curated by Leon Teale. This repository groups utilities for network enumeration, reporting, automation and more. Most scripts are written in Bash or Python and rely on common external tools (Nmap, masscan, metasploit, etc.).
Use responsibly and only with permission on networks you own or are authorised to test.
- Automation/ – setup helpers including a Kali post-install script and
PentestTool.sh
menu. - Cryptography/ – decrypt Windows GPP passwords.
- GoPhish/ – process phishing results with
gophish_positions_export.py
. - MSWord_Macros/ – macros for creating scope tables in Word.
- Nessus/ – merge or summarise Nessus scan output.
- Network/ – reconnaissance utilities such as
segmentation.sh
,sharelist.sh
, and port knocking tools. - Nmap/ – scripts for parsing
.nmap
results and counting ports. - Plesk/ – credential extraction helper for older Plesk installs.
- Privilege_Escalation/ – Linux/Windows escalation helpers like
LinEsc.sh
andgrouppolicypwn.sh
. - SSL/ – SSL testing tools including
sslscan-split-file.py
andTestSSLServer.jar
. - TamperMonkeyScripts/ – browser userscripts for tasks like generating CVSS strings in PwnDoc.
- Utilities/ – assorted helpers (CVE exploit finder, IPMI hash extraction, IP list converters, etc.).
- Web/ – small web utilities such as a service finder and HTTP to Burp bookmarklet generator.
- Webapps/ – Flask app for uploading PCAPs to a cracking service.
- Wordlists/ – password/username lists and top subdomains.
- WIFI/ – wireless testing script
wiffy.sh
. - Windows_portable_apps/ – handy Windows tools packaged for portability.
- dev-mightnotworkyet/ – experimental or in-development scripts (including the
Suggester
service enumeration tool). - web_shells/ – a collection of simple web shells with their own README.
Notable standalone scripts in the repository root include gpt.sh
(OpenAI CLI) and gxfr.py
(DNS zone transfer-style subdomain enumeration).
- Clone the repository:
git clone https://github.com/leonteale/pentestpackage.git
- Review each script's usage message (
-h
or--help
) to understand prerequisites and options. - Most tools require third‑party utilities (e.g.,
nmap
,masscan
,python3
). Install them before running.
Pull requests are welcome for improvements or new tools. Please ensure scripts are well commented and provide a brief description in this README or their own documentation.
These scripts are provided for educational and authorised testing only. The author and contributors are not responsible for misuse.