Weekly newsletter n°7

offsec.tools

A vast collection of security tools for bug bounty, pentest and red teaming

offsec.tools is a vast listing of security tools designed to help pentesters and bug hunters in their daily task. The list is organized by tags and provide a quick search engine. The list is feeded by the author and the community. Anyone can add a tool and be listed as a contributor, feel free to check the GitHub repository.

Last week many old tools back from the past have been added. Those tools, even if they are not maintain anymore can be great sources of inspiration as they come up with interesting forgotten technics.

We also have some very good Youtube channels with tons of videos, always good to see how other hackers find solutions to their problems, where they find bugs, what tools they use etc.

Enjoy the browsing guys and happy hacking!

Gwen.

Go to offsec.tools

Tools featured this week

bucket_finder

DigiNinja's bucket_finder utility.

AutoRecon

Multi-threaded network reconnaissance tool which performs automated enumeration of services.

FindUncommonShares

Quickly find uncommon shares in vast Windows domains.

Cain and Abel

Password recovery tool for Microsoft Operating Systems.

FuzzDB

Attack patterns and primitives for black-box application fault injection and resource discovery.

Acunetix

Quickly find and fix the vulnerabilities that put your web applications at risk of attack.

S3 Objects Check

Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.

Nmap

The network mapper.

authz

Burp Suite plugin to test for authorization flaws.

AzureGoat

A damn vulnerable Azure infrastructure.

Tools added last week

	LAZYPARIAH
	Generate reverse shell payloads on the fly.

	o365recon
	Retrieve information via O365 and AzureAD with valid credentials.

	lyncsmash
	Locate and attack Lync and Skype for Business.

	trurl
	Command line tool for URL parsing and manipulation.

	Athena OS
	Arch Linux-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!

	aem-detector
	Discover Adobe Experience Manager (AEM) Content Management System (CMS) websites.

	alterx
	Fast and customizable subdomain wordlist generator using DSL.

	R3C0Nizer
	The first ever CLI based menu-driven web application B-Tier recon framework.

	OSINTui
	OSINT from your favorite services in a friendly terminal user interface.

	ncrack
	Open source tool for network authentication cracking.

	phpsploit
	Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor.

	kerberoast
	Series of tools for attacking MS Kerberos implementations.

	BaRMIe
	Enumerating and attacking Java RMI (Remote Method Invocation) services.

	PoshC2
	A proxy aware C2 framework used to aid with post-exploitation and lateral movement.

	Invoke-PowerThIEf
	An Internet Explorer post exploitation library.

	PowerUpSQL
	A PowerShell toolkit for attacking SQL Server.

	MicroBurst
	A collection of scripts for assessing Microsoft Azure security.

	DNSMORPH
	Domain name permutation engine written in Go.

	dnstwist
	Domain name permutation engine for detecting several types of attacks.

	ssh-auditor
	The best way to scan for weak ssh passwords on your network.

	Reverse Shell Generator
	A tool to generate various ways to do a reverse shell.

	t14m4t
	Automated brute-forcing attack tool.

	vcsmap
	Plugin-based tool to scan public version control systems for sensitive information.

	AWS Sensitive Permissions
	This script enumerates the permissions of all the AWS principals of an account.

	Bug Bounty Reports Explained
	Bug Bounty Reports Explained channel.

	HackerSploit
	HackerSploit YouTube channel.

	InsiderPhD
	InsiderPhD Youtube channel.

	autopwn
	Specify targets and run sets of tools against them.

	sshLooterC
	It's the C version of sshLooter.

	sshLooter
	Script to steal passwords from ssh.

	ghidra
	Software reverse engineering (SRE) framework.

	SocialPwned
	Allows to get the emails from a target published in social networks to find possible credentials.

	lsassy
	Python tool to remotely extract credentials on a set of hosts.

Want more to see more tools?