Analysis updated 2026-06-24
Run an authorized phishing simulation against staff to measure click and credential rates.
Generate a cloned login page and capture submitted credentials during a sanctioned red-team engagement.
Bundle a payload with a believable pretext as part of a contracted penetration test.
Train new security testers on social-engineering attack patterns inside a contained lab.
| trustedsec/social-engineer-toolkit | llmware-ai/llmware | waditu/tushare | |
|---|---|---|---|
| Stars | 14,859 | 14,860 | 14,878 |
| Language | Python | Python | Python |
| Last pushed | — | 2026-05-17 | — |
| Maintenance | — | Maintained | — |
| Setup difficulty | moderate | moderate | easy |
| Complexity | 4/5 | 4/5 | 2/5 |
| Audience | ops devops | developer | data |
Figures from each repo's GitHub metadata at analysis time.
Linux is the supported path, macOS is experimental and Apple Silicon needs a Python venv before pip install.
The Social-Engineer Toolkit, known as SET, is an open source framework for penetration testing focused on social engineering attacks. Social engineering is the practice of tricking people, rather than directly attacking software, to get them to give up information or run something they should not. The project is written and maintained by David Kennedy, who works at TrustedSec, an information security consulting firm based in Cleveland, Ohio. The README is short and mostly covers what the tool is and how to install it. It says SET ships with a set of custom attack templates that let a tester build a believable simulated attack quickly. There is a strong disclaimer at the top: the tool is intended only for security testing with explicit written consent from the target, and using it outside that scope is not allowed. Supported platforms are Linux and Mac OS X, with the Mac support marked as experimental. On a Mac with Apple Silicon the instructions tell you to use a Python virtual environment before installing. Installation on Linux is by cloning the repo, running pip3 install -r requirements.txt, then python setup.py. On Kali Linux running under Windows WSL the README says you can install it with sudo apt install set. There is a separate user manual provided as a PDF in the repo, linked from the README.
SET is an open source penetration-testing framework focused on social-engineering attacks like phishing pages and payload delivery, for authorized security tests only.
Mainly Python. The stack also includes Python, Linux, Kali.
Setup difficulty is rated moderate, with roughly 30min to a first successful run.
Mainly ops devops.
This repo across BitVibe Labs
Verify against the repo before relying on details.