View in browser

Weekly newsletter n°14

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.
Go to offsec.tools

Tools featured this week
mimikittenz
A post-exploitation powershell tool for extracting juicy info from memory.
SUID3NUM
Standalone script to enumerate SUID binaries, separate default binaries from customs.
ShellPop
Pop shells like a master.
Dirstalk
Multi threaded application designed to brute force paths on web servers.
tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool.
mx-takeover
Focuses DNS MX records and detects misconfigured MX records.
Burp Suite
The class-leading vulnerability scanning, penetration testing, and web app security platform.
kiterunner
Contextual content discovery tool.
GraphQL Beautifier
Burp Suite extension to help make Graphql request more readable.
SearchSploit
Cli tool for Exploit-DB that also allows you to take a copy of Exploit Database with you.

Tools added last week
Pyrit
The famous WPA precomputed cracker.
zarp
Network attack tool.
git-secrets
Prevents you from committing secrets and credentials into git repositories.
talisman
Validate the outgoing changeset for things that look suspicious such as tokens, passwords and keys.
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
appmon
Framework for monitoring and tampering system API calls of native macOS, iOS and android apps.
hcxdumptool
Small tool to capture packets from wlan devices.
JNDI-Injection-Exploit
Generates JNDI links can start several servers to exploit JNDI Injection vulnerabilities.
morphHTA
Morphing Cobalt Strike's evil.HTA.
murphysec
An open source tool focused on software supply chain security.

Want more to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe