A complete, **authorization-first** workflow for running professional security assessments of systems **you own or are contractually permitted to test**. It gives you the methodology, the safety guard
Browse the actual product documentation and code examples included in this toolkit.
Key features of Penetration Testing Toolkit (Defensive / Professional)
• A five-phase **methodology** (pre-engagement → recon → scan → analyze → report). • **Scope-enforcing, dry-run-by-default wrappers** around standard tools (`nmap`, • A correct, standalone **CVSS v3.1 calculator** so every finding is scored • A **report generator** that turns a findings file into a clean Markdown report. • Ready-to-fill **Rules of Engagement, findings, and report templates**. • **Engagement checklists** that gate each phase.
A five-phase **methodology** (pre-engagement → recon → scan → analyze → report).
**Scope-enforcing, dry-run-by-default wrappers** around standard tools (`nmap`,
A correct, standalone **CVSS v3.1 calculator** so every finding is scored
A **report generator** that turns a findings file into a clean Markdown report.
Ready-to-fill **Rules of Engagement, findings, and report templates**.
**Engagement checklists** that gate each phase.
Configure Penetration Testing Toolkit (Defensive / Professional) parameters to see how the product works.
# 1) Score a finding with CVSS v3.1: python3 src/cvss.py "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" # -> 9.8 Critical # 2) Verify a target against your scope (self-test the guard on the example): python3 src/scope_guard.py # 3) Dry-run a scope-checked nmap discovery (prints the command; do