View in browser

Weekly newsletter n°39

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

Go to offsec.tools

Tools featured this week
GSIL
GitHub Sensitive Information Leakage.
MANSPIDER
Spider entire networks for juicy files sitting on SMB shares.
TugaRecon
Subdomains enumeration tool for penetration testers.
reGeorg
Pwn a bastion webserver and create SOCKS proxies through the DMZ.
CertStealer
A .NET tool for exporting and importing certificates without touching disk.
PwnFox
A Firefox/Burp Suite extension that provide usefull tools for your security audit.
BruteXSS
Tool written in Python simply to find XSS vulnerabilities in web application.
cloudsploit
Cloud Security Posture Management (CSPM).
ASNLookup
Leverage ASN to look up IP addresses owned by a specific organization.
steghide
Steganography program that hides secrets in the least significant bits of a file.

Tools added last week
MapperPlus
An advanced source map extractor based on headless browser.
wtfis
Passive hostname, domain and IP lookup tool for non-robots.
infer
A static analyzer for Java, C, C++, and Objective-C.
qark
Look for several security related Android application vulnerabilities.
pmd
An extensible multilanguage static code analyzer.
writehat
A pentest reporting tool.
mentalist
Graphical tool for custom wordlist generation.
wazuh
The open source security platform.

Want to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe