From 0f923b0d4898763db5af758e422fb5a8bc2a2e7b Mon Sep 17 00:00:00 2001 From: trimstray Date: Wed, 19 Dec 2018 20:24:48 +0100 Subject: [PATCH] updated 'Pentesters arsenal tools' - signed-off-by: trimstray --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 8522354..5f196cb 100644 --- a/README.md +++ b/README.md @@ -511,11 +511,13 @@ Linux Security Expert - trainings, howtos, checklists, security tools an   :small_orange_diamond: Metasploit - tool and framework for pentesting system, web and many more, contains a lot a ready to use exploit.
  :small_orange_diamond: Burp Suite - tool for testing Web application security, intercepting proxy to replay, inject, scan and fuzz HTTP requests.
  :small_orange_diamond: OWASP Zed Attack Proxy - intercepting proxy to replay, inject, scan and fuzz HTTP requests.
+  :small_orange_diamond: w3af - is a Web Application Attack and Audit Framework.
  :small_orange_diamond: Nikto2 - web server scanner which performs comprehensive tests against web servers for multiple items.
  :small_orange_diamond: sqlmap - tool that automates the process of detecting and exploiting SQL injection flaws.
  :small_orange_diamond: Faraday - an Integrated Multiuser Pentest Environment.
  :small_orange_diamond: ctf-tools - some setup scripts for security research tools.
  :small_orange_diamond: security-tools - collection of small security tools created mostly in Python. CTFs, pentests and so on.
+  :small_orange_diamond: fuzzdb - dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

##### :black_small_square: Pentests bookmarks collection