View in browser

Weekly newsletter n°58

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming

offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

This week a new feature has been deployed. As said in the guidelines, submitted tools can be accepted or rejected by the team after being reviewed. There can be several reasons for what a tool is not accepted, I decided to make a list of rejected tools so if you think that one them deserve a second chance, feel free to leave a comment on the corresponding issue on GitHub and we will check it again.

Happy hacking!

Go to offsec.tools

Tools featured this week

Fast CLI DNS lookup tool.

An asynchronous enumeration & vulnerability scanner.

Find and analyze private/public key files and Android APK files.

Tool for automating customized attacks against web applications.

The most advanced penetration testing distribution.

Active Directory certificate abuse.

DNS Enumeration Script.

An automated SSRF finder. Just give the domain name and your server and chill!

A one-stop pentesting checklist and logger tool.

Puredns is a fast domain resolver & subdomain bruteforcing tool.

Tools added last week

	urlhunter
	Allows searching on URLs that are exposed via shortener services.

	van-gonography
	Hide any type of files inside a image of your choice using steganography.

	Unshackle
	Bypass Windows and Linux user passwords from a bootable USB based on Linux.

	Web Check
	All-in-one OSINT tool for analysing any website.

	Puncia
	Official CLI utility for Subdomain Center & Exploit Observer.

Want to see more tools?

Go to offsec.tools

Sponsors