View in browser

Weekly newsletter n°48

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

Go to offsec.tools

Tools featured this week
Hash Muncher
Grab NetNTLMv2 hashes using ETW with administrative rights on Windows.
Quasar
Remote administration tool for Windows.
DripLoader
Evasive shellcode loader for bypassing injection detection.
writehat
A pentest reporting tool.
MalwareBazaar
Malware sample database.
PrivacyNet
Allow users to route Internet traffic through Tor and hide their real IP address.
Kadimus
Check for and exploit LFI vulnerabilities with a focus on PHP systems.
ctftool
Interactive CTF exploration tool.
webhook.site
Easily test HTTP webhooks with this handy tool that displays requests instantly.
RacePWN
Race Condition framework.

Tools added last week
cheat.sh
The only cheat sheet you need.
Lookyloo
Allows users to capture a website page and then display a tree of domains that call each other.
whonow
A malicious DNS server for executing DNS Rebinding attacks on the fly.
b374k
PHP Webshell with handy features.
FruityWifi
Wireless network auditing tool.
FinalRecon
All In One Web Recon.
Kubesploit
Cross-platform command & control server and agent focused on containerized environments.

Want to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe