A vast collection of security tools for bug bounty, pentest and red teaming

#all

883 results
nuclei-burp-plugin on offsec.tools
Sponsor
nuclei-burp-plugin

A Burp Suite plugin intended to help with Nuclei template generation.

#burpsuite   #scanner  

Nuclei templates on offsec.tools
Sponsor
Nuclei templates

Community curated list of templates for the Nuclei engine to find security vulnerabilities.

#cves   #fuzzing   #payloads   #resources   #scanner   #secrets   #vulnerabilities  

Shells on offsec.tools
Sponsor
Shells

A script for generating common revshells fast and easily.

#exploits   #rce   #shell  

Chaos on offsec.tools
Sponsor
Chaos

Collect and maintain internet-wide assets data for public Bug Bounty programs.

#bugbounty   #dns   #subdomains  

ASNmap on offsec.tools
Sponsor
ASNmap

Quickly maps organization network ranges using ASN information.

#dns   #ips  

tlsx on offsec.tools
Sponsor
tlsx

Fast and configurable TLS grabber focused on TLS based data collection.

#dns   #ips   #ports   #probing   #subdomains   #tls  

dnsX on offsec.tools
Sponsor
dnsX

Fast and multi-purpose DNS toolkit designed for running DNS queries.

#dns   #subdomains  

proxify on offsec.tools
Sponsor
proxify

Swiss Army knife Proxy tool for HTTP(S) traffic capture, manipulation, and replay on the go.

#proxy  

cloudlist on offsec.tools
Sponsor
cloudlist

Cloudlist is a tool for listing Assets from multiple Cloud Providers.

#aws   #azure   #cloud   #google  

uncover on offsec.tools
Sponsor
uncover

Quickly discover exposed hosts on the internet using multiple search engines.

#subdomains  

katana on offsec.tools
Sponsor
katana

A next-generation crawling and spidering framework.

#crawler   #endpoints  

mapcidr on offsec.tools
Sponsor
mapcidr

Small utility program to perform multiple operations for a given subnet/CIDR ranges.

#network   #ports   #scanner  

interactsh on offsec.tools
Sponsor
interactsh

An OOB interaction gathering server and client library

#oob  

httpx on offsec.tools
Sponsor
httpx

HTTP toolkit that allows running multiple probes using the retryablehttp library.

#endpoints   #probing  

shuffleDNS on offsec.tools
Sponsor
shuffleDNS

Enumerate valid subdomains using active bruteforce and DNS resolution.

#dns   #subdomains  

DNSProbe on offsec.tools
Sponsor
DNSProbe

Allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.

#dns   #subdomains  

Subfinder on offsec.tools
Sponsor
Subfinder

Discovery tool that discovers valid subdomains for websites.

#subdomains  

Naabu on offsec.tools
Sponsor
Naabu

A fast port scanner written in go with a focus on reliability and simplicity.

#network   #scanner  

Nuclei on offsec.tools
Sponsor
Nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

#allinone   #cves   #fuzzing   #scanner   #subto  

smbmap on offsec.tools
Featured
smbmap

A handy SMB enumeration tool.

#directories   #samba   #shares  

pypykatz on offsec.tools
Featured
pypykatz

Mimikatz implementation in pure Python.

#bruteforce   #cracker   #ntlm   #passwords   #python   #windows  

mimikatz on offsec.tools
Featured
mimikatz

A little tool to play with Windows security.

#cracker   #hash   #ntlm   #passwords   #windows  

Onex on offsec.tools
Featured
Onex

Hacking tools installer and package manager for hackers.

#linux   #utils  

linWinPwn on offsec.tools
Featured
linWinPwn

Automates a number of Active Directory enumeration and vulnerability.

#activedirectory   #enumeration   #linux   #windows  

CertCrunchy on offsec.tools
Featured
CertCrunchy

Uses data from SSL Certificates to find potential host names.

#censys   #certificates   #certspotter   #crtsh   #ips   #ssl   #subdomains  

Java Deserialization Scanner on offsec.tools
Featured
Java Deserialization Scanner

All-in-one plugin for the detection and exploitation of Java deserialization vulnerabilities.

#deserialization   #java   #scanner  

SSRF Sheriff on offsec.tools
Featured
SSRF Sheriff

A simple SSRF-testing sheriff written in Go.

#ssrf   #vulnerabilities  

Scrying on offsec.tools
Featured
Scrying

Collects RDP, web and VNC screenshots all in one place.

#screenshots  

crtndtry on offsec.tools
Featured
crtndtry

Yet another subdomain finder.

#subdomains  

ffufPostprocessing on offsec.tools
ffufPostprocessing

Golang tool which helps dropping the irrelevant entries from your ffuf result file.

#endpoints   #utils  

h8mail on offsec.tools
h8mail

Powerful and user-friendly password hunting tool.

#emails   #leaks   #passwords   #usernames  

ScareCrow on offsec.tools
ScareCrow

Payload creation framework designed around EDR bypass.

#api   #dll   #edr   #framework   #memory   #payloads   #permissions   #privesc  

LDAP Password Hunter on offsec.tools
LDAP Password Hunter

Password Hunter in active directory.

#activedirectory   #ldap   #passwords   #windows  

NMapify on offsec.tools
NMapify

Quickly and accurately create a visual representation of their Nmap output.

#images   #network   #utils  

sub404 on offsec.tools
sub404

A fast tool to check subdomain takeover vulnerability.

#subdomains   #subto  

mimikittenz on offsec.tools
mimikittenz

A post-exploitation powershell tool for extracting juicy info from memory.

#exploits   #memory   #secrets   #windows  

Dumpert on offsec.tools
Dumpert

LSASS memory dumper using direct system calls and API unhooking.

#api   #lsass   #memory  

WiFi-Pumpkin on offsec.tools
WiFi-Pumpkin

Framework for rogue Wi-Fi access point attack.

#framework   #mitm   #network   #sniffing   #spoofing   #wifi  

FindUncommonShares on offsec.tools
FindUncommonShares

Quickly find uncommon shares in vast Windows domains.

#activedirectory   #ldap   #samba   #shares   #windows  

Invoke-TmpDavFS on offsec.tools
Invoke-TmpDavFS

Memory Backed Powershell WebDav Server.

#webdav   #windows  

Invoke-SocksProxy on offsec.tools
Invoke-SocksProxy

Socks proxy, and reverse socks server using powershell.

#network   #pivot   #privesc   #proxy  

PowerShdll on offsec.tools
PowerShdll

Run PowerShell with rundll32 in order to bypass software restrictions.

#exploits   #payloads   #powershell   #windows  

PSByPassCLM on offsec.tools
PSByPassCLM

Bypass for PowerShell Constrained Language Mode.

#exploits   #payloads   #powershell   #windows  

CarbonCopy on offsec.tools
CarbonCopy

Creates a spoofed certificate of any online website and signs an executable for AV evasion.

#certificates  

DNSTracer on offsec.tools
DNSTracer

Trace the path of a DNS query.

#dms   #utils  

Invoke-BSOD on offsec.tools
Invoke-BSOD

For when you want a computer to be done - without admin!.

#bsod   #exploits   #windows  

Invoke-WCMDump on offsec.tools
Invoke-WCMDump

PowerShell script to dump Windows credentials from the Credential Manager.

#passwords   #windows  

Invoke-PSImage on offsec.tools
Invoke-PSImage

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute.

#exploits   #images   #payloads  

SDBF on offsec.tools
SDBF

Smart DNS Brute Forcer.

#domains   #subdomains  

Ciphey on offsec.tools
Ciphey

Automates decryptions & decodings with encodings, classical ciphers, hashes, or more.

#cryptography   #hash   #passwords  

ScopeHunter on offsec.tools
ScopeHunter

Command-line tool for finding in-scope targets for bug bounty programs.

#bugbounty   #bugcrowd   #hackerone   #intigriti   #utils   #yeswehack  

SSRFPwned on offsec.tools
SSRFPwned

Checks for SSRF using custom payloads after fetching URLs from sources & applying complex patterns.

#payloads   #ssrf  

TerminatorZ on offsec.tools
TerminatorZ

Scan for top potential vulnerabilities with known CVEs in your web applications.

#csrf   #cves   #rce   #scanner   #sqli   #xss  

SQLMutant on offsec.tools
SQLMutant

Searches for automated subdomain enumeration and runs SQLi tests.

#sqli   #subdomains  

moniorg on offsec.tools
moniorg

Leverage crt.sh website to monitor domains of a target.

#monitoring   #subdomains  

DVCA on offsec.tools
DVCA

Damn vulnerable cloud application.

#aws   #cloud   #training   #vulnerabilities  

Vampi on offsec.tools
Vampi

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing.

#api   #owasp   #training   #vulunerabilities  

DVWS on offsec.tools
DVWS

Vulnerable application with a web service and an API.

#training   #vulunerabilities   #webservices  

AzureGoat on offsec.tools
AzureGoat

A damn vulnerable Azure infrastructure.

#azure   #cloud   #training   #vulunerabilities  

AWSGoat on offsec.tools
AWSGoat

A damn vulnerable AWS infrastructure.

#aws   #cloud   #training   #vulunerabilities  

unix-privesc-check on offsec.tools
unix-privesc-check

Shell script to check for simple privilege escalation vectors on Unix systems.

#exploits   #privesc   #unix  

windows-privesc-check on offsec.tools
windows-privesc-check

Standalone executable to check for simple privilege escalation vectors.

#exploits   #privesc   #windows  

VBad on offsec.tools
VBad

VBA obfuscation tools combined with an MS Office document generator .

#documents   #exploits   #obfuscation   #office  

dumpcreds on offsec.tools
dumpcreds

May be used to extract various credentials from running processes.

#auth   #imap   #ntlm   #process   #secrets  

PowerSploit on offsec.tools
PowerSploit

A PowerShell Post-Exploitation Framework.

#exploits   #privesc   #rce   #shell   #windows  

SMBeagle on offsec.tools
SMBeagle

Fileshare auditing tool.

#network   #samba   #shares  

WMEye on offsec.tools
WMEye

Post exploitation tool that uses WMI event filter and MSBuild execution for lateral movement.

#pivot   #privesc   #windows   #wmi  

NTLMRecon on offsec.tools
NTLMRecon

Enumerate information from NTLM authentication enabled web endpoints.

#domains   #ntlm   #windows  

MSDAT on offsec.tools
MSDAT

Microsoft SQL database attacking tool.

#mssql   #sqli  

SMBetray on offsec.tools
SMBetray

Attack clients through file content swapping and compromise any data passed in cleartext.

#backdoor   #mitm   #network   #samba  

FakeImageExploiter on offsec.tools
FakeImageExploiter

Use a Fake image.jpg to exploit targets (hide known file extensions).

#exploits   #images  

radare2 on offsec.tools
radare2

UNIX-like reverse engineering framework and command-line toolset.

#binaries   #disassembler   #forensics   #malware   #utils  

FiercePhish on offsec.tools
FiercePhish

Full-fledged phishing framework to manage all phishing engagements.

#emails   #framework   #phishing  

Microsploit on offsec.tools
Microsploit

Quickly and easily create backdoor Office exploitation using module Metasploit packet.

#backdoor   #documents   #metasploit   #office   #overflow  

Vegile on offsec.tools
Vegile

Post exploitation tool to maintain some level of acces.

#access   #backdoor   #exploits   #postexploitation  

litefuzz on offsec.tools
litefuzz

A multi-platform fuzzer for poking at userland binaries and servers.

#fuzzing   #network  

securityonion on offsec.tools
securityonion

Free and open platform for threat hunting, enterprise security monitoring, and log management.

#allinone   #monitoring   #reports   #vm  

RedHunt-OS on offsec.tools
RedHunt-OS

Virtual machine for adversary emulation and threat hunting.

#toolkit   #vm  

GCPBucketBrute on offsec.tools
GCPBucketBrute

Enumerate Google Storage buckets, check the access and if they can be privilege escalated.

#buckets   #cloud   #google  

catphish on offsec.tools
catphish

Generate similar-looking domains for phishing attacks.

#domains   #phishing  

WinPwnage on offsec.tools
WinPwnage

UAC bypass, Elevate, Persistence methods.

#privesc   #uac   #windows  

CDN Proxy on offsec.tools
CDN Proxy

Create a copy of a targeted website with CDN and WAF restrictions disabled.

#cdn   #cloner   #cloudflare   #cloudfront   #waf  

Phishery on offsec.tools
Phishery

An SSL enabled basic auth credential harvester with a Word document template URL injector.

#credentials   #documents   #exploits   #phishing   #word  

katoolin3 on offsec.tools
katoolin3

Get your favourite Kali Linux tools on Debian/Ubuntu/Linux Mint.

#toolkit   #utils   #vm  

EAPHammer on offsec.tools
EAPHammer

Targeted attacks against WPA2-Enterprise networks, wireless pivots using hostile portal attacks.

#network   #wifi   #wireless   #wpa  

jsfinder on offsec.tools
jsfinder

Fetches JavaScript files quickly and comprehensively from a defined list of URLs or domains.

#crawler   #endpoints   #javascript  

CDK on offsec.tools
CDK

Make security testing of K8s, Docker, and Containerd easier.

#container   #docker   #kubernetes   #toolkit  

Quickjack on offsec.tools
Quickjack

Point-and-click tool for producing advanced clickjacking and frame-slicing attacks.

#clickjacking  

upload_bypass on offsec.tools
upload_bypass

File upload restrictions bypass by using different techniques!

#bypass   #exploits   #fileupload   #payloads  

Kali Linux on offsec.tools
Kali Linux

The most advanced penetration testing distribution.

#mobile   #toolkit   #training   #vm  

Unicornscan on offsec.tools
Unicornscan

An asynchronous TCP and UDP port scanner.

#ips   #network   #ports   #scanner   #utils  

nbtscan on offsec.tools
nbtscan

Scan networks searching for NetBIOS information.

#netbios   #network  

Dradis on offsec.tools
Dradis

Collaboration and reporting for infosec teams made simple.

#collaboration   #organizer   #reports  

Grendel-Scan on offsec.tools
Grendel-Scan

A tool for automated security scanning of web applications.

#scanner   #vulnerabilities  

amap on offsec.tools
amap

Identify applications even if they are running on a different port than normal.

#fingerprint   #ports   #scanner  

ike-scan on offsec.tools
ike-scan

Discover and fingerprint IKE hosts.

#fingerprint   #ike   #scanner  

KisMac on offsec.tools
KisMac

A free, open source wireless stumbling and security tool for Mac OS X.

#bluetooth   #network   #sniffer   #wireless  

ratproxy on offsec.tools
ratproxy

A semi-automated largely passive web application security audit tool.

#csrf   #proxy   #scanner   #xss  

Tamper Dev on offsec.tools
Tamper Dev

Allows you to intercept and edit HTTP/HTTPS requests and responses.

#browser   #chome   #http  

Tamper Data on offsec.tools
Tamper Data

View and modify HTTP requests before they are sent.

#browser   #firefox   #http  

Samurai WTF on offsec.tools
Samurai WTF

The best security training environment for developers and AppSec professionals.

#framework   #training   #vulnerabilities  

Sguil on offsec.tools
Sguil

The analyst console for network security monitoring.

#monitoring   #network  

p0f on offsec.tools
p0f

Identify the operating system of a target host simply by examining captured packets.

#fingerprint   #http   #network   #tcp  

wikto on offsec.tools
wikto

Nikto for Windows with some extra features.

#directories   #scanner  

NetworkMiner on offsec.tools
NetworkMiner

Network forensic analysis tool for Windows.

#emails   #forensic   #network   #passwords   #sniffer  

nipper-ng on offsec.tools
nipper-ng

Network infrastructure configuration parser.

#network   #parser  

WebInspect on offsec.tools
WebInspect

An automated dynamic testing solution that provides comprehensive vulnerability detection.

#allinone   #cves   #reports   #scanner   #vulnerabilities  

Invicti on offsec.tools
Invicti

Web Application Security For Enterprise.

#allinone   #cves   #monitoring   #reports   #scanner   #vulnerabilities  

Nagios on offsec.tools
Nagios

The industry standard in IT infrastructure monitoring.

#logs   #monitoring   #network   #reports  

NetWitness on offsec.tools
NetWitness

Rapidly detect and respond to any threat, anywhere. See Everything. Fear Nothing.

#cloud   #logs   #monitoring   #reports  

Splunk on offsec.tools
Splunk

The unified security and observability platform.

#aws   #azure   #cloud   #logs   #monitoring   #reports  

sslstrip on offsec.tools
sslstrip

A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.

#mitm   #network   #ssl   #stripping  

hunter.how on offsec.tools
hunter.how

Internet search engines for security researchers.

#cves   #dns   #ips   #network   #online   #ports   #recon   #subdomains  

Spy Extension on offsec.tools
Spy Extension

This Chrome extension will read literally everything it can.

#browser   #chrome   #cookies   #screenshots  

favirecon on offsec.tools
favirecon

Use favicon.ico to improve your target recon phase.

#favicon   #fingerprint   #recon  

sqlmate on offsec.tools
sqlmate

A friend of SQLmap which will do what you always expected from SQLmap.

#sqli  

Striker on offsec.tools
Striker

Offensive information and vulnerability scanner.

#ports   #scanner   #subdomains   #vulnerabilities  

AWSloot on offsec.tools
AWSloot

Pull secrets from an AWS environment.

#aws   #cloud   #secrets  

ADRecon on offsec.tools
ADRecon

Gather information about the Active Directory and generates a report.

#activedirectory   #domains   #reports   #windows  

Kwetza on offsec.tools
Kwetza

Infect an existing Android application with a Meterpreter payload.

#android   #exploits   #metasploit   #meterpreter   #mobile   #payloads  

reGeorg on offsec.tools
reGeorg

Pwn a bastion webserver and create SOCKS proxies through the DMZ.

#exploits   #http   #rce   #shell   #tunnel  

reDuh on offsec.tools
reDuh

Create a TCP circuit through validly formed HTTP requests.

#exploits   #http   #rce   #shell   #tunnel  

UserEnum on offsec.tools
UserEnum

Domain user enumeration tool.

#domains   #ldap   #usernames   #windows  

Graphicator on offsec.tools
Graphicator

Enumerate and extract GraphQL APIs.

#api   #graphql  

celerystalk on offsec.tools
celerystalk

An asynchronous enumeration & vulnerability scanner.

#automation   #nessus   #scanner   #screenshots   #subdomains  

web-hacking-toolkit on offsec.tools
web-hacking-toolkit

A web hacking toolkit.

#docker   #toolkit   #vm  

RedTeam_toolkit on offsec.tools
RedTeam_toolkit

Open source Django offensive webapp which is keeping the best tools used in the redteaming.

#cves   #directories   #reports   #scanner   #vulnerabilities   #xss  

Rock-ON on offsec.tools
Rock-ON

All in one recon tool that just get a single domain name and do all of the work alone.

#asn   #crawler   #directories   #domains   #ips   #ports   #recon   #subdomains   #subto  

SimplyEmail on offsec.tools
SimplyEmail

Email recon made fast and easy, with a framework to build on.

#emails   #framework   #osint   #recon  

Wordsmith on offsec.tools
Wordsmith

Assist with creating tailored wordlists, mostly based on geolocation.

#fuzzing   #utils   #wordlists  

jackdaw on offsec.tools
jackdaw

Gather gather gather.

#activedirectory   #domains   #hash   #passwords   #usernames   #windows  

RidRelay on offsec.tools
RidRelay

Enumerate usernames on a domain where you have no creds by using SMB relay.

#activedirectory   #domains   #ntlm   #samba   #usernames   #windows  

linuxprivchecker on offsec.tools
linuxprivchecker

A Linux privilege escalation check script.

#exploits   #linux   #privesc  

Snaffler on offsec.tools
Snaffler

A tool to help at finding delicious candy needles in a bunch of horrible boring haystacks.

#activedirectory   #exploits   #privesc   #windows  

KeyTabExtract on offsec.tools
KeyTabExtract

Extracts Key Values from .keytab files.

#hash   #kerberos   #keytab   #ntlm   #utils  

ikeforce on offsec.tools
ikeforce

Command line IPSEC VPN brute forcing tool for Linux.

#bruteforce   #ipsec   #usernames   #vpn  

Responder on offsec.tools
Responder

Responder is a LLMNR, NBT-NS and MDNS poisoner.

#dns   #exploits   #ftp   #hash   #ldap   #mssql   #passwords   #samba   #windows  

PhoneInfoga on offsec.tools
PhoneInfoga

Information gathering framework for phone numbers.

#framework   #osint   #phones   #recon  

weevely3 on offsec.tools
weevely3

Weaponized web shell.

#exploits   #http   #php   #rce   #shell  

AzureADLateralMovement on offsec.tools
AzureADLateralMovement

Lateral movement graph for Azure Active Directory.

#activedirectory   #azure   #cloud   #privesc  

smb-scanner on offsec.tools
smb-scanner

Samba scanning tool.

#samba   #scanner  

SUDO_KILLER on offsec.tools
SUDO_KILLER

A tool to identify and exploit sudo rules misconfigurations and vulnerabilities.

#exploits   #privesc   #rce   #root   #sudo  

BetterBackdoor on offsec.tools
BetterBackdoor

A backdoor with a multitude of features.

#backdoor   #exploits  

CertStealer on offsec.tools
CertStealer

A .NET tool for exporting and importing certificates without touching disk.

#certificates   #ssl  

Domain Hunter on offsec.tools
Domain Hunter

Checks expired domains to determine good candidates for phishing and C2 domain names.

#domains   #subdomains  

FastFuzz Chrome Extension on offsec.tools
FastFuzz Chrome Extension

Site fast fuzzing with chorme extension.

Nosql-Exploitation-Framework on offsec.tools
Nosql-Exploitation-Framework

A Python Framework For NoSQL Scanning and Exploitation.

#framework   #nosql   #sqli  

Vajra on offsec.tools
Vajra

UI-based tool with multiple techniques for attacking and enumerating Azure and AWS environment.

#aws   #azure   #cloud   #passwords   #subdomains  

TrevorC2 on offsec.tools
TrevorC2

A legitimate website that tunnels client/server communications for covert command execution.

#c2c   #exploits   #tunnel  

RED HAWK on offsec.tools
RED HAWK

All in one tool for information gathering, vulnerability scanning and crawling.

#cms   #crawler   #dns   #recon   #scanner   #sqli   #subdomains   #vulnerabilities  

SniffAir on offsec.tools
SniffAir

A framework for wireless pentesting.

#network   #wifi   #wireless  

Gorsair on offsec.tools
Gorsair

Gives root access on remote docker containers that expose their APIs.

#api   #containers   #docker  

airgeddon on offsec.tools
airgeddon

This is a multi-use bash script for Linux systems to audit wireless networks.

#network   #wifi   #wireless  

Dome on offsec.tools
Dome

Script that makes active and/or passive scan to obtain subdomains and search for open ports.

#bruteforce   #ports   #recon   #subdomains  

scanless on offsec.tools
scanless

Online port scan scraper.

#online   #ports   #scraper  

Firefly on offsec.tools
Firefly

Black box fuzzer for web applications.

#fuzzing   #payloads   #wordlists  

APTRS on offsec.tools
APTRS

Automated penetration testing reporting system.

#organizer   #reports   #vulnerabilities  

Pentest Mapper on offsec.tools
Pentest Mapper

Burp Suite extension for application pentest to write test cases and map flows and vulnerabilities.

#burpsuite   #mapping   #vulnerabilities  

PyCript on offsec.tools
PyCript

Bypass client-side encryption using custom logic for testing with Python and NodeJS.

#burpsuite   #cryptography   #encryption  

Vulmap on offsec.tools
Vulmap

Online local vulnerability scanners project.

#cves   #exploits   #scanner   #vulnerabilities  

Skanuvaty on offsec.tools
Skanuvaty

Dangerously fast DNS/network/port scanner.

#dns   #ips   #ports   #scanner  

Metabigor on offsec.tools
Metabigor

Intelligence tool to do OSINT tasks and more but without any API key.

#asn   #osint   #recon  

enum4Linux on offsec.tools
enum4Linux

Enumerate data from Windows and Samba hosts.

#network   #samba   #windows  

GitHarvester on offsec.tools
GitHarvester

Tool used for harvesting information from GitHub.

#github   #recon  

certSniff on offsec.tools
certSniff

A certificate transparency log keyword sniffer written in Python.

#certificates   #recon  

WEF on offsec.tools
WEF

WiFi exploitation framework.

#framework   #mitm   #wifi  

bypass-url-parser on offsec.tools
bypass-url-parser

Tool that tests MANY url bypasses to reach a 40X protected page.

#bypass   #exploits  

Villain on offsec.tools
Villain

Backdoor generator and multi-session handler for sibling servers and sessions sharing.

#backdoor   #exploits   #shell  

ShadowSpray on offsec.tools
ShadowSpray

Spray shadow credentials across an entire domain.

#domain   #passwords   #windows  

autoSSRF on offsec.tools
autoSSRF

Smart context-based SSRF vulnerability scanner.

#scanner   #ssrf  

hoaxshell on offsec.tools
hoaxshell

Windows reverse shell payload generator and handler that abuses the http(s) protocol.

#payloads   #shell   #windows  

SpoolSploit on offsec.tools
SpoolSploit

Collection of Windows print spooler exploits and other utilities for practical exploitation.

#exploits   #printer  

PipeViewer on offsec.tools
PipeViewer

A tool that shows detailed information about named pipes in Windows.

#pipes   #utils   #windows  

CMSeek on offsec.tools
CMSeek

CMS Detection and Exploitation suite that supports over 180 other CMSs.

#cms   #drupal   #joomla   #scanner   #wordpress  

gateway-finder on offsec.tools
gateway-finder

Identify routers on the local LAN and paths to the Internet.

#lan   #network   #router  

gateway-finder-imp on offsec.tools
gateway-finder-imp

Identify routers on the local LAN and paths to the Internet.

#lan   #network   #router  

wifiphisher on offsec.tools
wifiphisher

The rogue access point framework.

#framework   #phishing   #wifi  

undetected-chromedriver on offsec.tools
undetected-chromedriver

Optimized Selenium Chromedriver patch which does not trigger anti-bot services.

#automation   #bot   #bypass  

brutespray on offsec.tools
brutespray

Automatically attempts default creds on found services based on Nmap output.

#passwords  

RDP Scraper on offsec.tools
RDP Scraper

Enumerates users based off RDP Screenshots.

#rdp   #usernames   #windows  

mitmAP on offsec.tools
mitmAP

A python program to create a fake AP and sniff data.

#mitm   #sniffer   #wifi  

PayGen on offsec.tools
PayGen

Tool to generate stable undetected payload.

#exploits   #payloads  

afrog on offsec.tools
afrog

A vulnerability scanning tools for penetration testing.

#cves   #fingerprint   #passwords   #scanner   #vulnerabilities  

gitleaks on offsec.tools
gitleaks

Protect and discover secrets using Gitleaks.

#devsecops   #git   #gitleaks   #go   #golang   #hacktoberfest   #secret   #security   #security-tools  

ggshield on offsec.tools
ggshield

Find multiple types of hardcoded secrets & types of infrastructure-as-code misconfigurations.

#codeanalysis   #passwords   #secrets  

ShellPop on offsec.tools
ShellPop

Pop shells like a master.

#exploits   #privesc   #rce   #shell  

awesome-cve-poc on offsec.tools
awesome-cve-poc

A collection about Proof of Concepts of Common Vulnerabilities and Exposures.

#cves   #exploits   #poc   #resources   #vulnerabilities  

reapoc on offsec.tools
reapoc

OpenSource Poc && Vulnerable-Target Storage Box.

#cves   #exploits   #poc   #resources   #vulnerabilities  

Fiddler Everywhere on offsec.tools
Fiddler Everywhere

Web debugging proxy for MacOS, Windows, and Linux.

#browser   #http   #proxy   #requests  

yersinia on offsec.tools
yersinia

A framework for layer 2 attacks.

#dos   #exploits   #network   #protocols  

l0phtcrack on offsec.tools
l0phtcrack

Crack Windows passwords from hashes.

#cracker   #hash   #ntlm   #passwords   #windows  

Qualys Cloud Platform on offsec.tools
Qualys Cloud Platform

The revolutionary architecture that powers Qualys' IT, security, and compliance cloud apps.

#allinone   #cves   #reports   #scanner   #vulnerabilities  

SSTImap on offsec.tools
SSTImap

Automatic SSTI detection tool with interactive interface.

#codeinjection   #scanner   #ssti  

Shodan on offsec.tools
Shodan

Search engine for Internet-connected devices.

#cves   #dns   #ips   #network   #online   #ports   #recon   #subdomains  

dBmonster on offsec.tools
dBmonster

A multitool for tracking and locating nearby devices via their RF activities.

#network   #tracker   #wifi   #wireless  

Netlas.io on offsec.tools
Netlas.io

Netlas.io is the network atlas of Internet. IP, DNS, Web, IoT devices, and etc.

#cves   #dns   #ips   #network   #online   #ports   #recon   #subdomains  

AORT on offsec.tools
AORT

All in one recon tool for bug bounty.

#dns   #ips   #recon   #scanner   #subdomains  

infoooze on offsec.tools
infoooze

User-friendly OSINT tool that allows you to quickly and easily gather informations.

#ips   #osint   #usernames  

LanGuard on offsec.tools
LanGuard

Patch management, vulnerability scanning, and network auditing.

#allinone   #cves   #network   #reports   #scanner   #vulnerabilities  

Nexpose on offsec.tools
Nexpose

Vulnerability scanner which aims to support the entire vulnerability management lifecycle.

#allinone   #cves   #reports   #scanner   #vulnerabilities  

Ophcrack on offsec.tools
Ophcrack

Windows password cracker based on rainbow tables.

#bruteforce   #cracker   #ntlm   #passwords   #windows  

dsniff on offsec.tools
dsniff

Collection of tools for network auditing and penetration testing.

#mitm   #network   #passwords   #sniffer  

Core Impact on offsec.tools
Core Impact

Designed to enable security teams to conduct advanced penetration tests with ease.

#allinone   #cves   #exploits   #reports   #scanner   #vulnerabilities  

WebScarab on offsec.tools
WebScarab

Framework for analysing applications that communicate using the HTTP and HTTPS protocols.

#framewwork   #proxy   #scanner  

Paros Proxy on offsec.tools
Paros Proxy

HTTP(S) proxy for assessing web application vulnerability.

#allinone   #cves   #proxy   #reports   #scanner   #vulnerabilities  

Ettercap on offsec.tools
Ettercap

Free and open source network security tool for man-in-the-middle attacks on a LAN.

#bluetooth   #mitm   #network   #sniffer   #wifi  

Kismet on offsec.tools
Kismet

Remote capture for all capture types over TCP sockets or websockets.

#bluetooth   #network   #sniffer   #wireless  

Cain and Abel on offsec.tools
Cain and Abel

Password recovery tool for Microsoft Operating Systems.

#bruteforce   #network   #passwords   #voip   #windows   #wireless  

Nessus on offsec.tools
Nessus

The global gold standard in vulnerability assessment built for the modern attack surface.

#allinone   #cves   #reports   #scanner   #vulnerabilities  

TryHackMe on offsec.tools
TryHackMe

Hands-on cyber security training through real-world scenarios.

#learning   #online   #resources   #training  

Hack The Box on offsec.tools
Hack The Box

Massive hacking playground, and infosec community.

#learning   #online   #resources   #training  

DVWA on offsec.tools
DVWA

Damn Vulnerable Web Application.

#fileupload   #learning   #resources   #sqli   #training   #xss  

bWAPP on offsec.tools
bWAPP

An extremely buggy web application!.

#learning   #resources   #training   #vulnerabilities  

WebGoat on offsec.tools
WebGoat

Deliberately insecure application.

#learning   #resources   #training   #vulnerabilities  

VulnHub on offsec.tools
VulnHub

Provide materials that allows anyone to gain practical 'hands-on' experience in security.

#learning   #resources   #training   #vm   #vulnerabilities  

OWASP Juice Shop on offsec.tools
OWASP Juice Shop

Probably the most modern and sophisticated insecure web application.

#learning   #online   #resources   #training  

OrbitalDump on offsec.tools
OrbitalDump

A simple multi-threaded distributed SSH brute-forcing tool.

#bruteforce   #passwords   #ssh  

GitHacker on offsec.tools
GitHacker

A Git source leak exploit tool that restores the entire Git repository, including data from stash.

#codeanalysis   #exploits   #git  

XSSRocket on offsec.tools
XSSRocket

Written by Black Hat Ethical Hacking and #ChatGPT for offensive security and XSS attacks.

#exploits   #payloads   #xss  

Ronin on offsec.tools
Ronin

A free and open source Ruby toolkit for security research and development.

#allinone   #asn   #dns   #exploits   #ips   #payloads   #scanner  

Nosey Parker on offsec.tools
Nosey Parker

Command-line tool that finds secrets and sensitive information in textual data and Git history.

#codeanalysis   #git   #secrets  

RadareEye on offsec.tools
RadareEye

Scan nearby devices and execute command when the target device comes in between range.

#iot   #network   #wifi   #wireless  

Vuls on offsec.tools
Vuls

Agent-less vulnerability scanner.

#scanner   #vulnerabilities  

Offensive-Azure on offsec.tools
Offensive-Azure

Collection of offensive tools targeting Microsoft Azure written in Python to be platform agnostic.

#azure   #cloud  

Hawk on offsec.tools
Hawk

Network, recon and offensive-security tool for Linux.

#network   #spoofing   #tcp  

Scapy on offsec.tools
Scapy

Powerful and interactive packet manipulation program and library.

#network   #spoofing   #tcp  

Sub-Drill on offsec.tools
Sub-Drill

A very (very) FAST and simple subdomain finder based on online & free services.

#subdomains  

s3recon on offsec.tools
s3recon

Amazon S3 bucket finder and crawler.

#aws   #buckets   #cloud  

bucket_finder on offsec.tools
bucket_finder

DigiNinja's bucket_finder utility.

#aws   #buckets   #cloud  

CloudMapper on offsec.tools
CloudMapper

CloudMapper helps you analyze your Amazon Web Services environments.

#aws   #cloud  

CloudJack on offsec.tools
CloudJack

Route53/CloudFront Vulnerability assessment utility.

#aws   #cloud   #cloudfront   #dns  

CloudFrunt on offsec.tools
CloudFrunt

A tool for identifying misconfigured CloudFront domains.

#aws   #cloud   #cloudfront   #domains  

Bucket Stream on offsec.tools
Bucket Stream

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

#aws   #buckets   #certificates   #cloud  

hardCIDR on offsec.tools
hardCIDR

Discover the netblocks or ranges (in CIDR notation) owned by the target organization.

#asn   #ips   #recon  

dnstwist on offsec.tools
dnstwist

A tool to monitor for potential spear phishing domains and send to Slack.

#dns   #domains   #phishing  

Mosca on offsec.tools
Mosca

Manual search tool to find bugs like a grep unix command.

#codeanalysis   #reports   #secrets  

autochrome on offsec.tools
autochrome

A shiny new copy of Chromium that will bring colors in your hunt.

#browser   #chrome   #utils  

PwnFox on offsec.tools
PwnFox

A Firefox/Burp Suite extension that provide usefull tools for your security audit.

#browser   #burpsuite   #firefox  

EarlyBird on offsec.tools
EarlyBird

Sensitive data detection tool capable of scanning source code repositories.

#codeanalysis   #pii   #secrets  

detect-secrets on offsec.tools
detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

#codeanalysis   #secrets  

Aranea on offsec.tools
Aranea

OSINT tool used for web crawling or examining JavaScript files for likely useful data.

#crawler   #endpoints   #javascript   #regexp   #secrets  

Can I Take Over DNS? on offsec.tools
Can I Take Over DNS?

A list of DNS providers and how to claim (sub)domains via missing hosted zones.

#dns   #resources   #subto  

Nimbostratus on offsec.tools
Nimbostratus

Tool for fingerprinting and exploiting Amazon cloud infrastructures.

#aws   #cloud   #fingerprint   #pivot  

Oculus on offsec.tools
Oculus

OSINT tool used to discover environments, directories, and subdomains of a particular domain.

#aws   #azure   #cloud   #directories   #emails   #firebase   #fuzzing   #osint   #subdomains  

Legitify on offsec.tools
Legitify

Detect misconfigurations and security risks across GitHub and GitLab assets.

#github   #gitlab   #scm  

drek on offsec.tools
drek

A static-code-analysis tool for performing security-focused code reviews.

#codeanalysis   #regexp   #reports  

Agartha on offsec.tools
Agartha

Burp Suite extension for dynamic payload generation to detect injection flaws.

#burpsuite   #lfi   #payloads   #rce   #sqli   #xss  

WifiPass on offsec.tools
WifiPass

A simple wireless networks penetration testing toolkit.

#network   #wifi   #wireless  

Up HTTP Server on offsec.tools
Up HTTP Server

Simple HTTP listener for security testing.

#http   #requests   #utils  

Weaponised XSS Payloads on offsec.tools
Weaponised XSS Payloads

XSS payloads designed to turn alert(1) into P1.

#payloads   #privesc   #vulnerabilities   #xss  

mssqlproxy on offsec.tools
mssqlproxy

Perform lateral movement in restricted environments through a compromised MSSQL Server.

#mssql   #privesc   #sqli   #windows  

Apidor on offsec.tools
Apidor

Tool for automating the search for IDOR vulnerabilities in web applications and APIs.

#idor   #vulnerabilities  

Canvas on offsec.tools
Canvas

Assessment tool that allows penetration testing and hostile attack simulations.

#allinone   #exploits   #framework  

DirBuster on offsec.tools
DirBuster

Multi threaded application to brute force directories and files names on web/application servers.

#bruteforce   #directories   #files   #recon  

Highlighter and Extractor on offsec.tools
Highlighter and Extractor

Collect, categorize and highlight requests and/or responses according to their content.

#burpsuite   #regexp   #requests  

jok3r on offsec.tools
jok3r

Network and Web Pentest Automation Framework.

#allinone   #cves   #fingerprint   #framework   #organizer   #scanner  

ScoutSuite on offsec.tools
ScoutSuite

Multi-cloud security auditing tool.

#alibaba   #aws   #azure   #cloud   #google   #oracle   #reports  

xssor2 on offsec.tools
xssor2

Hack with JavaScript.

#encoding   #online   #oob   #payloads   #xss  

LiveTargetsFinder on offsec.tools
LiveTargetsFinder

Generates lists of live hosts and URLs.

#dns   #probing   #subdomains  

Medusa on offsec.tools
Medusa

Medusa is a speedy, parallel, and modular, login brute-forcer.

#bruteforce   #passwords  

Legion on offsec.tools
Legion

Aids in discovery, reconnaissance and exploitation of information systems.

#cves   #directories   #framework   #network   #reports   #scanner   #ssl  

WES-NG on offsec.tools
WES-NG

Windows Exploit Suggester - Next Generation.

#cves   #exploits   #metasploit   #windows  

CyberChef on offsec.tools
CyberChef

A web app for encryption, encoding, compression and data analysis.

#encoding   #hash   #online   #utils  

IntelSpy on offsec.tools
IntelSpy

Perform automated network reconnaissance scans to gather network intelligence.

#exploits   #ips   #ports   #probing   #recon   #reports   #scanner   #subdomains  

crackerjack on offsec.tools
crackerjack

Hashcat Web Interface.

#cracker   #passwords  

LeakLooker-X on offsec.tools
LeakLooker-X

Discover, browse and monitor database/source code leaks.

#leaks   #osint   #secrets  

Subra on offsec.tools
Subra

A Web-UI for subdomain enumeration.

#recon   #subdomains  

AdvancedKeyHacks on offsec.tools
AdvancedKeyHacks

API Key/Token Exploitation Made easy.

#exploits   #secrets  

fprobe on offsec.tools
fprobe

Take a list of domains/subdomains and probe for working http/https server.

#probing   #subdomains  

bbscope on offsec.tools
bbscope

Scope gathering tool for multiple Bug Bounty platforms.

#bugbounty   #bugcrowd   #hackerone   #immunefi   #intigriti   #yeswehack  

go-dork on offsec.tools
go-dork

The fastest dork scanner written in Go.

#bing   #dorks   #google   #shodan   #yahoo  

Linux Exploit Suggester on offsec.tools
Linux Exploit Suggester

Based on operating system release number.

#cves   #exploits   #linux  

Windows Exploit Suggester on offsec.tools
Windows Exploit Suggester

Compares target patch levels against the Microsoft vulnerability DB to detect missing patches.

#cves   #exploits   #metasploit   #windows  

windows-kernel-exploits on offsec.tools
windows-kernel-exploits

A list of Windows kernel exploits.

#cves   #exploits   #kernel   #resources   #windows  

Rekono on offsec.tools
Rekono

Execute full pentesting processes combining multiple hacking tools automatically.

#automation   #organizer   #recon   #telegram  

s3reverse on offsec.tools
s3reverse

The format of various S3 buckets is convert in one format.

#aws   #buckets   #cloud   #utils  

ADRT on offsec.tools
ADRT

Active Directory Report Tool.

#activedirectory   #domains   #passwords   #users   #windows  

padding-oracle-attacker on offsec.tools
padding-oracle-attacker

Execute padding oracle attacks with support for concurrent network requests and an elegant UI.

#oracle   #passwords   #secrets  

Runtime Mobile Security on offsec.tools
Runtime Mobile Security

A powerful web interface that helps you to manipulate Android and iOS Apps at Runtime.

#android   #frida   #ios   #mobile  

Firebase-Extractor on offsec.tools
Firebase-Extractor

A tool written in python for scraping firebase data.

#firebase   #scraper   #secrets  

FridaAndroidTracer on offsec.tools
FridaAndroidTracer

Android application tracer powered by Frida.

#android   #frida   #mobile   #reports  

Async DNS Brute on offsec.tools
Async DNS Brute

DNS asynchronous brute force utility.

#bruteforce   #dns   #subdomains  

Print-My-Shell on offsec.tools
Print-My-Shell

Automate the process of generating various reverse shells.

#exploits   #privesc   #shell  

DroneSploit on offsec.tools
DroneSploit

Drone pentesting framework console.

#drone   #exploits   #framework   #iot  

Sourcegraph on offsec.tools
Sourcegraph

Search millions of open source repositories.

#codeanalysis   #github   #online   #regexp   #secrets  

grep.app on offsec.tools
grep.app

Searches code from over a half million public repositories on GitHub.

#github   #online   #regexp   #secrets  

Nessus database export on offsec.tools
Nessus database export

Export Nessus results to a relational database for use in reports, analysis, or whatever else.

#nessus   #reports   #utils  

SharpImpersonation on offsec.tools
SharpImpersonation

A User Impersonation tool - via Token or Shellcode injection.

#exploits   #windows  

WinPwn on offsec.tools
WinPwn

Automation for internal Windows pentest / AD-Security.

#activedirectory   #cves   #exploits   #windows  

SweetPotato on offsec.tools
SweetPotato

A collection of various Windows privilege escalation techniques from service accounts to SYSTEM.

#local   #privesc   #windows  

exfilkit on offsec.tools
exfilkit

Data exfiltration utility for testing detection capabilities.

#utils  

MagicRecon on offsec.tools
MagicRecon

A powerful shell script to maximize the recon and data collection process.

#allinone   #cloud   #emails   #recon   #screenshots   #subdomains   #vulnerabilities  

haktldextract on offsec.tools
haktldextract

Extract domains/subdomains from URLs en masse.

#domains   #endpoints   #subdomains   #tld   #utils  

default-http-login-hunter on offsec.tools
default-http-login-hunter

Login hunter of default credentials for administrative web interfaces.

#passwords  

burp-exporter on offsec.tools
burp-exporter

Copy a Burp Suite request to a file or the clipboard as multiple programming languages functions.

#burpsuite   #export   #http   #requests   #utils  

qsinject on offsec.tools
qsinject

Allows you to quickly substitute query string values with regex matches, one-at-a-time.

#parameters   #payloads   #regexp   #utils  

PCredz on offsec.tools
PCredz

This tool extracts secrets from a pcap file or from a live interface.

#mitm   #network   #secrets  

eLdap-Ldap-Search-and-Filter on offsec.tools
eLdap-Ldap-Search-and-Filter

A tool that helps users searching and filtering queries in Ldap environment.

#injection   #ldap   #payloads  

LazyHunter on offsec.tools
LazyHunter

A framework that provides a web UI to commonly used Bug Hunting/Pentesting tools.

#framework   #organizer   #recon  

lk_scraper on offsec.tools
lk_scraper

A fully configurable LinkedIn scraper: scrape anything within LinkedIn.

#linkedin   #scraper  

pown.js on offsec.tools
pown.js

Security testing and exploitation toolkit.

#endpoints   #framework   #recon  

gwdomains on offsec.tools
gwdomains

Sub domain wild card filtering tool.

#domains   #recon   #subdomains   #wildcard  

wifipumpkin3 on offsec.tools
wifipumpkin3

Powerful framework for rogue access point attack.

#framework   #mitm   #network   #sniffing   #spoofing   #wifi  

pivotnacci on offsec.tools
pivotnacci

A tool to make socks connections through HTTP agents.

#http   #pivot   #privesc  

pwncat on offsec.tools
pwncat

Netcat on steroids with many extra features.

#exploits   #privesc   #shell  

Nozaki on offsec.tools
Nozaki

HTTP fuzzer engine security oriented.

#fuzzing   #http   #yaml  

APKEnum on offsec.tools
APKEnum

Passive enumeration utility For Android applications.

#android   #apk   #mobile  

Trishul on offsec.tools
Trishul

Burp Suite Extension to hunt for common vulnerabilities found in websites.

#burpsuite   #scanner   #vulnerabilities  

eos on offsec.tools
eos

Enemies Of Symfony - debug mode Symfony looter.

vhosts-sieve on offsec.tools
vhosts-sieve

Searching for virtual hosts among non-resolvable domains.

#recon   #subdomains   #vhosts  

SonarSearch on offsec.tools
SonarSearch

A rapid API for the project Sonar dataset.

#dns   #domains   #ips   #subdomains  

The XSS rat on offsec.tools
The XSS rat

The XSS rat YouTube channel.

#bugbounty   #hackers   #learning   #recon   #tools   #videos  

LiveOverflow on offsec.tools
LiveOverflow

LiveOverflow YouTube channel.

#bugbounty   #hackers   #learning   #recon   #tools   #videos  

Awesome Bug Bounty on offsec.tools
Awesome Bug Bounty

A comprehensive curated list of available Bug Bounty & disclosure programs and writeups.

#bugbounty   #platforms   #resources   #writeups  

Bug Bounty Reference on offsec.tools
Bug Bounty Reference

A list of Bug Bounty writeups that is categorized by the bug nature.

#bugbounty   #resources   #vulnerabilities   #writeups  

Awesome BugBounty Writeups on offsec.tools
Awesome BugBounty Writeups

A curated list of bugbounty writeups (Bug type wise).

#bugbounty   #resources   #writeups  

SharpHose on offsec.tools
SharpHose

Asynchronous password spraying tool for Windows environments.

#activedirectory   #passwords   #spraying   #windows  

Yet Another Sniffer on offsec.tools
Yet Another Sniffer

A network analyzer that make easy to extract informations about network traffic.

#dns   #http   #network   #sniffer  

nmap-query-xml on offsec.tools
nmap-query-xml

A simple program to query nmap XML files in the terminal.

#ips   #ports   #utils  

NSDetect on offsec.tools
NSDetect

Utility to detect AWS NS Takeover.

#aws   #cloud   #nameserver  

Slack Watchman on offsec.tools
Slack Watchman

Monitoring your Slack workspaces for sensitive informations.

#files   #osint   #secrets   #slack  

differer on offsec.tools
differer

differer finds how URLs are parsed by different languages in order to help bug hunters break filters.

#endpoints   #ssrf   #utils  

Transformations on offsec.tools
Transformations

Understand how input is transformed on a system, which can help to craft payloads.

#encoding   #payloads   #utils  

Words Scraper on offsec.tools
Words Scraper

Selenium based web scraper to generate passwords list.

#crawler   #passwords   #wordlists