offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming

Go to offsec.tools

Tools featured this week

A plugin-based scanner that aids security researchers in identifying issues with several CMSs.

CLI client for deps.dev API.

Burp Suite extension to pull employee names from Google and Bing LinkedIn search results.

A high-performance DNS stub resolver for bulk lookups and reconnaissance.

A tool for identifying misconfigured CloudFront domains.

Useful tool to track location or mobile number.

Subdomain takeover tool for attackers, bug bounty hunters and the blue team!

Detect misconfigurations and security risks across GitHub and GitLab assets.

Burp Suite extension to encode an IP address focused to bypass application IP/domain blacklist.

Script that dumps employee data from the LinkedIn social networking platform.

	bxss.net
	Web service that allows for detection Blind XSS vulnerabilities within web applications.

	PrivacyNet
	Allow users to route Internet traffic through Tor and hide their real IP address.

	BounceBack
	Stealth redirector for your red team operation security.

	macchanger
	Makes the maniputation of MAC addresses of network interfaces easier.

	dnswalk
	A DNS database debugger.

	evil-winrm
	The ultimate WinRM shell for hacking/pentesting.

	netdiscover
	Network address discovering tool.

	volatility
	The volatile memory extraction framework.

Go to offsec.tools