download.png

OWASP PTK
(Penetration Testing Toolkit) 

 

Manual Penetration Testing
 

PTK is an open-source utility that performs fast and effective web application vulnerability testing. 

 

It strengthens analysis and saves time by making it simple to get detailed information about an application's security issues.

 

Built for penetration testers, offensive security teams, and developers — PTK powers productivity with advanced recon, weaponization, attack-exploit capability, and carefully matched utilities.

Key Capabilities:

 

  • Chrome, Firefox, and MS Edge browsers supported.

  • Integrates with Selenium tests.

  • Executes modified HTTP requests without javascript validation, and sequence recording with HAR file output.

  • Handles authentication with normal user sessions  – MFA/Captcha bypass via macro and traffic recording, bootstrap auth.

  • Inspects technology stack, security headers, crawled links, & domains. 

  • Repeat a request or send to execute XSS, SQL, or OS Command injections on any particular request using traffic log detail.

Asset 10_4x.png

Ready to Give PTK a Closer Look?