Skip to content

security-geeks/pentestpackage

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

PentestPackage

A collection of penetration testing tools, scripts, and wordlists created or curated by Leon Teale. This repository groups utilities for network enumeration, reporting, automation and more. Most scripts are written in Bash or Python and rely on common external tools (Nmap, masscan, metasploit, etc.).

Use responsibly and only with permission on networks you own or are authorised to test.

Directory overview

  • Automation/ – setup helpers including a Kali post-install script and PentestTool.sh menu.
  • Cryptography/ – decrypt Windows GPP passwords.
  • GoPhish/ – process phishing results with gophish_positions_export.py.
  • MSWord_Macros/ – macros for creating scope tables in Word.
  • Nessus/ – merge or summarise Nessus scan output.
  • Network/ – reconnaissance utilities such as segmentation.sh, sharelist.sh, and port knocking tools.
  • Nmap/ – scripts for parsing .nmap results and counting ports.
  • Plesk/ – credential extraction helper for older Plesk installs.
  • Privilege_Escalation/ – Linux/Windows escalation helpers like LinEsc.sh and grouppolicypwn.sh.
  • SSL/ – SSL testing tools including sslscan-split-file.py and TestSSLServer.jar.
  • TamperMonkeyScripts/ – browser userscripts for tasks like generating CVSS strings in PwnDoc.
  • Utilities/ – assorted helpers (CVE exploit finder, IPMI hash extraction, IP list converters, etc.).
  • Web/ – small web utilities such as a service finder and HTTP to Burp bookmarklet generator.
  • Webapps/ – Flask app for uploading PCAPs to a cracking service.
  • Wordlists/ – password/username lists and top subdomains.
  • WIFI/ – wireless testing script wiffy.sh.
  • Windows_portable_apps/ – handy Windows tools packaged for portability.
  • dev-mightnotworkyet/ – experimental or in-development scripts (including the Suggester service enumeration tool).
  • web_shells/ – a collection of simple web shells with their own README.

Notable standalone scripts in the repository root include gpt.sh (OpenAI CLI) and gxfr.py (DNS zone transfer-style subdomain enumeration).

Getting started

  1. Clone the repository:
    git clone https://github.com/leonteale/pentestpackage.git
  2. Review each script's usage message (-h or --help) to understand prerequisites and options.
  3. Most tools require third‑party utilities (e.g., nmap, masscan, python3). Install them before running.

Contributing

Pull requests are welcome for improvements or new tools. Please ensure scripts are well commented and provide a brief description in this README or their own documentation.

Disclaimer

These scripts are provided for educational and authorised testing only. The author and contributors are not responsible for misuse.

About

a package of Pentest scripts I have made or commonly use

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Python 83.7%
  • Shell 13.1%
  • Java 0.7%
  • Perl 0.6%
  • HTML 0.6%
  • Roff 0.5%
  • Other 0.8%