View in browser

Weekly newsletter n°62

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming
offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

Go to offsec.tools

Tools featured this week
exiv2
Image metadata library and tools.
pipedream
Collect HTTP or webhook requests and inspect them in a human-friendly way.
BounceBack
Stealth redirector for your red team operation security.
WeirdAAL
AWS Attack Library.
Extended SSRF search
Smart SSRF scanner using different methods like parameter brute forcing in POST and GET.
git-secrets
Prevents you from committing secrets and credentials into git repositories.
403-bypasser
A Burp Suite extension made to automate the process of bypassing 403 pages.
toxssin
Open-source penetration testing tool that automates the process of exploiting XSS.
Nishang
Offensive PowerShell for red team, penetration testing and offensive security.
Haylxon
Blazing-fast tool to grab screenshots of your domain list right from terminal.

Tools added last week
Yara
The pattern matching swiss knife for malware researchers.
HackTools
The all-in-one browser extension for offensive security professionals.
Decompilers online
Free, accessible, and platform-independent decompilation service.
wordlistctl
Fetch, install and search wordlist archives from websites and torrent peers.
lazyegg
Powerful tool for extracting various types of data from a target URL.
clair
Vulnerability static analysis for containers.
docker-bench-security
Check for dozens of common best-practices around deploying Docker containers in production.
js-beautify
Beautifier for JavaScript.
PcapXray
Visualize a packet capture offline as a network diagram including device identification.
crowdsec
Offers crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.

Want to see more tools?
Go to offsec.tools

Sponsors
You received this email because you signed up on our website.
You can unsubscribe anytime.

Unsubscribe