View in browser

Weekly newsletter n°47

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

Go to offsec.tools

Tools featured this week
bWAPP
An extremely buggy web application!.
Nagios
The industry standard in IT infrastructure monitoring.
Pspy
Unprivileged Linux process snooping.
pphack
The most advanced client-side prototype pollution scanner.
github-regexp
Basically a regexp over a GitHub search.
django-DefectDojo
DevSecOps, ASPM, Vulnerability Management.
DirSearch
A Go implementation of dirsearch.
DomLink
Link a domain with registered organisation names and emails, to other domains.
wpfinger
wpfinger is a red-team WordPress scanning tool.
S3Cruze
All-in-one AWS S3 bucket tool.

Tools added last week
HackTricks
Find trick/technique/whatever learnt from CTFs, real life apps, reading researches, and news.
Rootkit Hunter
Scans for rootkits, backdoors and possible local exploits.
Kage
Graphical user interface for Metasploit Meterpreter and session handler.
zsteg
Detect stegano-hidden data in PNG & BMP.
chkrootkit
Locally checks for signs of a rootkit.
gittyleaks
Find sensitive information for a git repo.
BlueHound
Pinpoint the security issues that actually matter.
pingcastle
Get Active Directory security at 80% in 20% of the time.
postleaks
Search for sensitive data in Postman public library.

Want to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe