View in browser

Weekly newsletter n°22

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.



Hi guys,

New entries are slowing down for a few weeks as I am currently traveling around the west coast of the US. I'm planning to be Vegas for the DefCon (if I can find a way a get a ticket there), feel free to ping if you're around and want to meet :)

Happy hacking !
Go to offsec.tools

Tools featured this week
LDAP Password Hunter
Password Hunter in active directory.
WhatsMyName
Enumerate usernames across many websites.
unix-privesc-check
Shell script to check for simple privilege escalation vectors on Unix systems.
Yoga
Your OSINT Graphical Analyzer.
Scapy
Powerful and interactive packet manipulation program and library.
dvcs-ripper
Rip web accessible version control systems: svn, git...
smbcrawler
No-nonsense tool that takes credentials and a list of hosts and crawls through those shares.
graphql-introspection-analyzer
Graphql introspection query analyzer.
Mosca
Manual search tool to find bugs like a grep unix command.

Tools added last week
xurlfind3r
A cli utility to find domain's known URLs from curated passive online sources.
Cake Fuzzer
Cutting-edge project designed to automate the continuous discovery of vulnerabilities in webapps.
DeHashed
DeHashed provides free deep-web scans and protection against credential leaks.

Want more to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe