View in browser

Weekly newsletter n°28

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

The tools images have been moved on AWS, which is supposed to help to reduce the loading time.
A sharing module is now available on tools page so you can share them on social networks.
Few design improvements like the video background on some pages.
The design of this newsletter was kind of broken on some mail providers, fixed with CSS tricks, and the search engine was also dead so I repaired it...

Happy hacking my friends :)
Go to offsec.tools

Tools featured this week
deps.dev
Better understand the structure, construction, and security of open source software packages.
Qualys Cloud Platform
The revolutionary architecture that powers Qualys' IT, security, and compliance cloud apps.
recollapse
REcollapse is a helper tool for black-box regex fuzzing to bypass validations
Filebuster
An extremely fast and flexible web fuzzer.
Eagle
Vulnerability scanner for mass detection of web-based applications vulnerabilities.
XSSMap
Detect XSS vulnerability in Web Applications.
AutoRepeater
Automated HTTP Request Repeating With Burp Suite.
HTSHELLS
Self contained web shells and other attacks via .htaccess files.
dirsearch
Web path scanner.
Nessus
The global gold standard in vulnerability assessment built for the modern attack surface.

Tools added last week
cve-collector
Simple latest CVE collector written in Python.
Free Certifications
A curated list of free courses & certifications.
dmut
Perform permutations, mutations and alteration of subdomains.
HasMySecretLeaked
Search across 20 million exposed secrets in public GitHub repositories, gists, issues and comments.
ILSpy
NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!.
gcp_scanner
A comprehensive scanner for Google Cloud.
Sirius
Truly open-source general purpose vulnerability scanner.
msLDAPDump
LDAP enumeration tool implemented in Python3.
octosuite
An all-in-one GitHub open-source intelligence framework.
CloudFlair
Find origin servers of websites behind Cloudflare by using Internet-wide scan data from Censys.

Want more to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe