![](https://assets.offsec.tools/tools/favirecon-3931.png) |
|
favirecon |
|
Use favicon.ico to improve your target recon phase. |
|
|
![](https://assets.offsec.tools/tools/sstimap-4477.png) |
|
SSTImap |
|
Automatic SSTI detection tool with interactive interface. |
|
|
![](https://assets.offsec.tools/tools/safecopy-2103.png) |
|
safecopy |
|
Burp Extension for copying requests safely. |
|
|
![](https://assets.offsec.tools/tools/webanalyze-8225.png) |
|
webanalyze |
|
Uncovers technologies used on websites to automate mass scanning. |
|
|
![](https://assets.offsec.tools/tools/wireshark-3634.png) |
|
Wireshark |
|
Network sniffer that captures and analyzes packets off the wire. |
|
|
![](https://assets.offsec.tools/tools/eyewitness-4776.png) |
|
EyeWitness |
|
Take screenshots of websites, provide server header info and identify default credentials. |
|
|
![](https://assets.offsec.tools/tools/reaver-4783.png) |
|
Reaver |
|
Implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs. |
|
|
![](https://assets.offsec.tools/tools/invoke-adenum-2833.png) |
|
Invoke-ADEnum |
|
Automate Active Directory Enumeration using PowerView. |
|
|
![](https://assets.offsec.tools/tools/ncrack-5350.png) |
|
ncrack |
|
Open source tool for network authentication cracking. |
|
|
![](https://assets.offsec.tools/tools/nodejsscan-6542.png) |
|
nodejsscan |
|
A static security code scanner for Node.js applications. |
|
|