# PentestPackage

A collection of penetration testing tools, scripts, and wordlists created or curated by **Leon Teale**.
This repository groups utilities for network enumeration, reporting, automation and more. Most scripts are written in Bash or Python and rely on common external tools (Nmap, masscan, metasploit, etc.).

Use responsibly and only with permission on networks you own or are authorised to test.

## Directory overview

- **Automation/** – setup helpers including a Kali post-install script and `PentestTool.sh` menu.
- **Cryptography/** – decrypt Windows GPP passwords.
- **GoPhish/** – process phishing results with `gophish_positions_export.py`.
- **MSWord_Macros/** – macros for creating scope tables in Word.
- **Nessus/** – merge or summarise Nessus scan output.
- **Network/** – reconnaissance utilities such as `segmentation.sh`, `sharelist.sh`, and port knocking tools.
- **Nmap/** – scripts for parsing `.nmap` results and counting ports.
- **Plesk/** – credential extraction helper for older Plesk installs.
- **Privilege_Escalation/** – Linux/Windows escalation helpers like `LinEsc.sh` and `grouppolicypwn.sh`.
- **SSL/** – SSL testing tools including `sslscan-split-file.py` and `TestSSLServer.jar`.
- **TamperMonkeyScripts/** – browser userscripts for tasks like generating CVSS strings in PwnDoc.
- **Utilities/** – assorted helpers (CVE exploit finder, IPMI hash extraction, IP list converters, etc.).
- **Web/** – small web utilities such as a service finder and HTTP to Burp bookmarklet generator.
- **Webapps/** – Flask app for uploading PCAPs to a cracking service.
- **Wordlists/** – password/username lists and top subdomains.
- **WIFI/** – wireless testing script `wiffy.sh`.
- **Windows_portable_apps/** – handy Windows tools packaged for portability.
- **dev-mightnotworkyet/** – experimental or in-development scripts (including the `Suggester` service enumeration tool).
- **web_shells/** – a collection of simple web shells with their own README.

Notable standalone scripts in the repository root include `gpt.sh` (OpenAI CLI) and `gxfr.py` (DNS zone transfer-style subdomain enumeration).

## Getting started

1. Clone the repository:
   ```bash
   git clone https://github.com/leonteale/pentestpackage.git
   ```
2. Review each script's usage message (`-h` or `--help`) to understand prerequisites and options.
3. Most tools require third‑party utilities (e.g., `nmap`, `masscan`, `python3`). Install them before running.

## Contributing

Pull requests are welcome for improvements or new tools. Please ensure scripts are well commented and provide a brief description in this README or their own documentation.

## Disclaimer

These scripts are provided for educational and authorised testing only. The author and contributors are not responsible for misuse.