π οΈPentesting Tools Cheat Sheet
Master essential penetration testing tools. Quick reference cheat sheet for network scanning, exploitation, web testing, and more.
A quick reference guide to essential penetration testing tools and their use cases.
Information Gathering
| Tool | Description |
|---|---|
| Network scanning and host discovery |
| Domain and IP information lookup |
| DNS enumeration |
| Email and subdomain harvesting |
Scanning and Enumeration
| Tool | Description |
|---|---|
| Windows SMB enumeration |
| NetBIOS scanner |
| Web server vulnerability scanner |
| SMB/CIFS enumeration tool |
Exploitation
| Tool | Description |
|---|---|
| Framework for developing, testing exploits |
| SQL injection automation tool |
| Brute-force and dictionary attack tool |
| Exploit database search and download |
Post-Exploitation
| Tool | Description |
|---|---|
| Windows credentials extraction |
| Post-exploitation framework |
| Linux privilege escalation scanner |
| Generate undetectable payloads |
Wireless Hacking
| Tool | Description |
|---|---|
| Wireless network auditing tool |
| Wireless network detection and analysis |
| WPS-enabled router attack tool |
Web Application Testing
| Tool | Description |
|---|---|
| Web vulnerability scanner and proxy |
| Web application security scanner |
| WordPress vulnerability scanner |
| Automated SQL injection tool |
Reporting and Documentation
| Tool | Description |
|---|---|
| Collaborative reporting tool |
| Note-taking application for pen testers |
Note: Always use penetration testing tools responsibly and only on systems you have permission to test.
Last updated