View in browser

Weekly newsletter n°61

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

Go to offsec.tools

Tools featured this week
postmaniac
Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspaces.
NoSQL Injector
NoSql Injection CLI tool for finding vulnerable websites using MongoDB.
BetterBackdoor
A backdoor with a multitude of features.
APKEnum
Passive enumeration utility For Android applications.
PayGen
Tool to generate stable undetected payload.
ScanCannon
Combines the speed of masscan with the reliability and detailed enumeration of nmap.
windows-kernel-exploits
A list of Windows kernel exploits.
gitGraber
Monitor GitHub to search and find sensitive data in real time.
RevShells
Hosted Reverse Shell generator with a ton of functionality.
VulnHub
Provide materials that allows anyone to gain practical 'hands-on' experience in security.

Tools added last week
JEB Decompiler
Decompile and debug binary code and obfuscated apps, break down and analyze document files.
fingerprintjs
Browser fingerprinting library.
cilium
eBPF-based networking, security, and observability.
vulhub
Pre-built vulnerable environments based on docker-compose.
sops
Simple and flexible tool for managing secrets.
JD-GUI
A standalone Java decompiler GUI.
owasp MASTG
Comprehensive manual for mobile application security testing and reverse engineering.
owasp MASVS
The industry standard for mobile application security.

Want to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe