View in browser

Weekly newsletter n°18

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.
Go to offsec.tools

Tools featured this week
proxmark3
RFID tool designed to snoop, listen and emulate everything from Low to High Frequency tags.
AWSGoat
A damn vulnerable AWS infrastructure.
Autorize
Automatic authorization enforcement detection extension for Burp Suite.
Kismet
Remote capture for all capture types over TCP sockets or websockets.
HardHat C2
A cross-platform, collaborative, Command & Control framework.
bounty-targets-data
Hourly-updated data dumps of bug bounty platform scopes that are eligible for reports.
eLdap-Ldap-Search-and-Filter
A tool that helps users searching and filtering queries in Ldap environment.
BFAC
Check for backup artifacts that may disclose the web-application's source code.
PyShell
Multiplatform Python webshell.
RegStrike
RegStrike is a .reg payload generator.

Tools added last week
AttifyOS
Distribution for pentesting IoT devices.
Empire
Post-exploitation and adversary emulation framework that is used to aid Red Teams and pentesters.
Starkiller
Starkiller is a frontend for Empire.
Caldera
Automated adversary emulation platform.
BloodHound
Six Degrees of Domain Admin.
CrackMapExec
A swiss army knife for pentesting networks.

Want more to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe