A vast collection of security tools for bug bounty, pentest and red teaming

#all

nuclei-burp-plugin on offsec.tools
Sponsor
nuclei-burp-plugin

A Burp Suite plugin intended to help with Nuclei template generation.

Nuclei templates on offsec.tools
Sponsor
Nuclei templates

Community curated list of templates for the Nuclei engine to find security vulnerabilities.

Shells on offsec.tools
Sponsor
Shells

A script for generating common revshells fast and easily.

Chaos on offsec.tools
Sponsor
Chaos

Collect and maintain internet-wide assets data for public Bug Bounty programs.

ASNmap on offsec.tools
Sponsor
ASNmap

Quickly maps organization network ranges using ASN information.

#dns   #ips  

tlsx on offsec.tools
Sponsor
tlsx

Fast and configurable TLS grabber focused on TLS based data collection.

dnsX on offsec.tools
Sponsor
dnsX

Fast and multi-purpose DNS toolkit designed for running DNS queries.

proxify on offsec.tools
Sponsor
proxify

Swiss Army knife Proxy tool for HTTP(S) traffic capture, manipulation, and replay on the go.

#proxy  

cloudlist on offsec.tools
Sponsor
cloudlist

Cloudlist is a tool for listing Assets from multiple Cloud Providers.

#aws   #azure   #cloud   #google  

uncover on offsec.tools
Sponsor
uncover

Quickly discover exposed hosts on the internet using multiple search engines.

katana on offsec.tools
Sponsor
katana

A next-generation crawling and spidering framework.

mapcidr on offsec.tools
Sponsor
mapcidr

Small utility program to perform multiple operations for a given subnet/CIDR ranges.

interactsh on offsec.tools
Sponsor
interactsh

An OOB interaction gathering server and client library

#oob  

httpx on offsec.tools
Sponsor
httpx

HTTP toolkit that allows running multiple probes using the retryablehttp library.

shuffleDNS on offsec.tools
Sponsor
shuffleDNS

Enumerate valid subdomains using active bruteforce and DNS resolution.

DNSProbe on offsec.tools
Sponsor
DNSProbe

Allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.

Subfinder on offsec.tools
Sponsor
Subfinder

Discovery tool that discovers valid subdomains for websites.

Naabu on offsec.tools
Sponsor
Naabu

A fast port scanner written in go with a focus on reliability and simplicity.

Nuclei on offsec.tools
Sponsor
Nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

smbmap on offsec.tools
Featured
smbmap

A handy SMB enumeration tool.

pypykatz on offsec.tools
Featured
pypykatz

Mimikatz implementation in pure Python.

mimikatz on offsec.tools
Featured
mimikatz

A little tool to play with Windows security.

Onex on offsec.tools
Featured
Onex

Hacking tools installer and package manager for hackers.

#linux   #utils  

linWinPwn on offsec.tools
Featured
linWinPwn

Automates a number of Active Directory enumeration and vulnerability.

CertCrunchy on offsec.tools
Featured
CertCrunchy

Uses data from SSL Certificates to find potential host names.

Java Deserialization Scanner on offsec.tools
Featured
Java Deserialization Scanner

All-in-one plugin for the detection and exploitation of Java deserialization vulnerabilities.

SSRF Sheriff on offsec.tools
Featured
SSRF Sheriff

A simple SSRF-testing sheriff written in Go.

Scrying on offsec.tools
Featured
Scrying

Collects RDP, web and VNC screenshots all in one place.

crtndtry on offsec.tools
Featured
crtndtry

Yet another subdomain finder.

ffufPostprocessing on offsec.tools
ffufPostprocessing

Golang tool which helps dropping the irrelevant entries from your ffuf result file.

h8mail on offsec.tools
h8mail

Powerful and user-friendly password hunting tool.

ScareCrow on offsec.tools
ScareCrow

Payload creation framework designed around EDR bypass.

LDAP Password Hunter on offsec.tools
LDAP Password Hunter

Password Hunter in active directory.

NMapify on offsec.tools
NMapify

Quickly and accurately create a visual representation of their Nmap output.

sub404 on offsec.tools
sub404

A fast tool to check subdomain takeover vulnerability.

mimikittenz on offsec.tools
mimikittenz

A post-exploitation powershell tool for extracting juicy info from memory.

Dumpert on offsec.tools
Dumpert

LSASS memory dumper using direct system calls and API unhooking.

#api   #lsass   #memory  

WiFi-Pumpkin on offsec.tools
WiFi-Pumpkin

Framework for rogue Wi-Fi access point attack.

FindUncommonShares on offsec.tools
FindUncommonShares

Quickly find uncommon shares in vast Windows domains.

Invoke-TmpDavFS on offsec.tools
Invoke-TmpDavFS

Memory Backed Powershell WebDav Server.

Invoke-SocksProxy on offsec.tools
Invoke-SocksProxy

Socks proxy, and reverse socks server using powershell.

PowerShdll on offsec.tools
PowerShdll

Run PowerShell with rundll32 in order to bypass software restrictions.

PSByPassCLM on offsec.tools
PSByPassCLM

Bypass for PowerShell Constrained Language Mode.

CarbonCopy on offsec.tools
CarbonCopy

Creates a spoofed certificate of any online website and signs an executable for AV evasion.

DNSTracer on offsec.tools
DNSTracer

Trace the path of a DNS query.

#dms   #utils  

Invoke-BSOD on offsec.tools
Invoke-BSOD

For when you want a computer to be done - without admin!.

Invoke-WCMDump on offsec.tools
Invoke-WCMDump

PowerShell script to dump Windows credentials from the Credential Manager.

Invoke-PSImage on offsec.tools
Invoke-PSImage

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute.

SDBF on offsec.tools
SDBF

Smart DNS Brute Forcer.

Ciphey on offsec.tools
Ciphey

Automates decryptions & decodings with encodings, classical ciphers, hashes, or more.

ScopeHunter on offsec.tools
ScopeHunter

Command-line tool for finding in-scope targets for bug bounty programs.

SSRFPwned on offsec.tools
SSRFPwned

Checks for SSRF using custom payloads after fetching URLs from sources & applying complex patterns.

TerminatorZ on offsec.tools
TerminatorZ

Scan for top potential vulnerabilities with known CVEs in your web applications.

#csrf   #cves   #rce   #scanner   #sqli   #xss  

SQLMutant on offsec.tools
SQLMutant

Searches for automated subdomain enumeration and runs SQLi tests.

moniorg on offsec.tools
moniorg

Leverage crt.sh website to monitor domains of a target.

DVCA on offsec.tools
DVCA

Damn vulnerable cloud application.

Vampi on offsec.tools
Vampi

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing.

DVWS on offsec.tools
DVWS

Vulnerable application with a web service and an API.

AzureGoat on offsec.tools
AzureGoat

A damn vulnerable Azure infrastructure.

AWSGoat on offsec.tools
AWSGoat

A damn vulnerable AWS infrastructure.

unix-privesc-check on offsec.tools
unix-privesc-check

Shell script to check for simple privilege escalation vectors on Unix systems.

windows-privesc-check on offsec.tools
windows-privesc-check

Standalone executable to check for simple privilege escalation vectors.

VBad on offsec.tools
VBad

VBA obfuscation tools combined with an MS Office document generator .

dumpcreds on offsec.tools
dumpcreds

May be used to extract various credentials from running processes.

PowerSploit on offsec.tools
PowerSploit

A PowerShell Post-Exploitation Framework.

SMBeagle on offsec.tools
SMBeagle

Fileshare auditing tool.

WMEye on offsec.tools
WMEye

Post exploitation tool that uses WMI event filter and MSBuild execution for lateral movement.

NTLMRecon on offsec.tools
NTLMRecon

Enumerate information from NTLM authentication enabled web endpoints.

MSDAT on offsec.tools
MSDAT

Microsoft SQL database attacking tool.

#mssql   #sqli  

SMBetray on offsec.tools
SMBetray

Attack clients through file content swapping and compromise any data passed in cleartext.

FakeImageExploiter on offsec.tools
FakeImageExploiter

Use a Fake image.jpg to exploit targets (hide known file extensions).

radare2 on offsec.tools
radare2

UNIX-like reverse engineering framework and command-line toolset.

FiercePhish on offsec.tools
FiercePhish

Full-fledged phishing framework to manage all phishing engagements.

Microsploit on offsec.tools
Microsploit

Quickly and easily create backdoor Office exploitation using module Metasploit packet.

Vegile on offsec.tools
Vegile

Post exploitation tool to maintain some level of acces.

litefuzz on offsec.tools
litefuzz

A multi-platform fuzzer for poking at userland binaries and servers.

securityonion on offsec.tools
securityonion

Free and open platform for threat hunting, enterprise security monitoring, and log management.

RedHunt-OS on offsec.tools
RedHunt-OS

Virtual machine for adversary emulation and threat hunting.

#toolkit   #vm  

GCPBucketBrute on offsec.tools
GCPBucketBrute

Enumerate Google Storage buckets, check the access and if they can be privilege escalated.

catphish on offsec.tools
catphish

Generate similar-looking domains for phishing attacks.

WinPwnage on offsec.tools
WinPwnage

UAC bypass, Elevate, Persistence methods.

CDN Proxy on offsec.tools
CDN Proxy

Create a copy of a targeted website with CDN and WAF restrictions disabled.

Phishery on offsec.tools
Phishery

An SSL enabled basic auth credential harvester with a Word document template URL injector.

katoolin3 on offsec.tools
katoolin3

Get your favourite Kali Linux tools on Debian/Ubuntu/Linux Mint.

#toolkit   #utils   #vm  

EAPHammer on offsec.tools
EAPHammer

Targeted attacks against WPA2-Enterprise networks, wireless pivots using hostile portal attacks.

jsfinder on offsec.tools
jsfinder

Fetches JavaScript files quickly and comprehensively from a defined list of URLs or domains.

CDK on offsec.tools
CDK

Make security testing of K8s, Docker, and Containerd easier.

Quickjack on offsec.tools
Quickjack

Point-and-click tool for producing advanced clickjacking and frame-slicing attacks.

upload_bypass on offsec.tools
upload_bypass

File upload restrictions bypass by using different techniques!

Kali Linux on offsec.tools
Kali Linux

The most advanced penetration testing distribution.

Unicornscan on offsec.tools
Unicornscan

An asynchronous TCP and UDP port scanner.

nbtscan on offsec.tools
nbtscan

Scan networks searching for NetBIOS information.

Dradis on offsec.tools
Dradis

Collaboration and reporting for infosec teams made simple.

Grendel-Scan on offsec.tools
Grendel-Scan

A tool for automated security scanning of web applications.

amap on offsec.tools
amap

Identify applications even if they are running on a different port than normal.

ike-scan on offsec.tools
ike-scan

Discover and fingerprint IKE hosts.

KisMac on offsec.tools
KisMac

A free, open source wireless stumbling and security tool for Mac OS X.

ratproxy on offsec.tools
ratproxy

A semi-automated largely passive web application security audit tool.

#csrf   #proxy   #scanner   #xss  

Tamper Dev on offsec.tools
Tamper Dev

Allows you to intercept and edit HTTP/HTTPS requests and responses.

Tamper Data on offsec.tools
Tamper Data

View and modify HTTP requests before they are sent.

Samurai WTF on offsec.tools
Samurai WTF

The best security training environment for developers and AppSec professionals.

Sguil on offsec.tools
Sguil

The analyst console for network security monitoring.

p0f on offsec.tools
p0f

Identify the operating system of a target host simply by examining captured packets.

wikto on offsec.tools
wikto

Nikto for Windows with some extra features.

NetworkMiner on offsec.tools
NetworkMiner

Network forensic analysis tool for Windows.

nipper-ng on offsec.tools
nipper-ng

Network infrastructure configuration parser.

WebInspect on offsec.tools
WebInspect

An automated dynamic testing solution that provides comprehensive vulnerability detection.

Invicti on offsec.tools
Invicti

Web Application Security For Enterprise.

Nagios on offsec.tools
Nagios

The industry standard in IT infrastructure monitoring.

NetWitness on offsec.tools
NetWitness

Rapidly detect and respond to any threat, anywhere. See Everything. Fear Nothing.

Splunk on offsec.tools
Splunk

The unified security and observability platform.

sslstrip on offsec.tools
sslstrip

A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.

hunter.how on offsec.tools
hunter.how

Internet search engines for security researchers.

Spy Extension on offsec.tools
Spy Extension

This Chrome extension will read literally everything it can.

favirecon on offsec.tools
favirecon

Use favicon.ico to improve your target recon phase.

sqlmate on offsec.tools
sqlmate

A friend of SQLmap which will do what you always expected from SQLmap.

#sqli  

Striker on offsec.tools
Striker

Offensive information and vulnerability scanner.

AWSloot on offsec.tools
AWSloot

Pull secrets from an AWS environment.

#aws   #cloud   #secrets  

ADRecon on offsec.tools
ADRecon

Gather information about the Active Directory and generates a report.

Kwetza on offsec.tools
Kwetza

Infect an existing Android application with a Meterpreter payload.

reGeorg on offsec.tools
reGeorg

Pwn a bastion webserver and create SOCKS proxies through the DMZ.

reDuh on offsec.tools
reDuh

Create a TCP circuit through validly formed HTTP requests.

UserEnum on offsec.tools
UserEnum

Domain user enumeration tool.

Graphicator on offsec.tools
Graphicator

Enumerate and extract GraphQL APIs.

#api   #graphql  

celerystalk on offsec.tools
celerystalk

An asynchronous enumeration & vulnerability scanner.

web-hacking-toolkit on offsec.tools
web-hacking-toolkit

A web hacking toolkit.

#docker   #toolkit   #vm  

RedTeam_toolkit on offsec.tools
RedTeam_toolkit

Open source Django offensive webapp which is keeping the best tools used in the redteaming.

Rock-ON on offsec.tools
Rock-ON

All in one recon tool that just get a single domain name and do all of the work alone.

SimplyEmail on offsec.tools
SimplyEmail

Email recon made fast and easy, with a framework to build on.

Wordsmith on offsec.tools
Wordsmith

Assist with creating tailored wordlists, mostly based on geolocation.

jackdaw on offsec.tools
jackdaw

Gather gather gather.

RidRelay on offsec.tools
RidRelay

Enumerate usernames on a domain where you have no creds by using SMB relay.

linuxprivchecker on offsec.tools
linuxprivchecker

A Linux privilege escalation check script.

Snaffler on offsec.tools
Snaffler

A tool to help at finding delicious candy needles in a bunch of horrible boring haystacks.

KeyTabExtract on offsec.tools
KeyTabExtract

Extracts Key Values from .keytab files.

ikeforce on offsec.tools
ikeforce

Command line IPSEC VPN brute forcing tool for Linux.

Responder on offsec.tools
Responder

Responder is a LLMNR, NBT-NS and MDNS poisoner.

PhoneInfoga on offsec.tools
PhoneInfoga

Information gathering framework for phone numbers.

weevely3 on offsec.tools
weevely3

Weaponized web shell.

#exploits   #http   #php   #rce   #shell  

AzureADLateralMovement on offsec.tools
AzureADLateralMovement

Lateral movement graph for Azure Active Directory.

smb-scanner on offsec.tools
smb-scanner

Samba scanning tool.

SUDO_KILLER on offsec.tools
SUDO_KILLER

A tool to identify and exploit sudo rules misconfigurations and vulnerabilities.

BetterBackdoor on offsec.tools
BetterBackdoor

A backdoor with a multitude of features.

CertStealer on offsec.tools
CertStealer

A .NET tool for exporting and importing certificates without touching disk.

Domain Hunter on offsec.tools
Domain Hunter

Checks expired domains to determine good candidates for phishing and C2 domain names.

FastFuzz Chrome Extension on offsec.tools
FastFuzz Chrome Extension

Site fast fuzzing with chorme extension.

Nosql-Exploitation-Framework on offsec.tools
Nosql-Exploitation-Framework

A Python Framework For NoSQL Scanning and Exploitation.

Vajra on offsec.tools
Vajra

UI-based tool with multiple techniques for attacking and enumerating Azure and AWS environment.

TrevorC2 on offsec.tools
TrevorC2

A legitimate website that tunnels client/server communications for covert command execution.

RED HAWK on offsec.tools
RED HAWK

All in one tool for information gathering, vulnerability scanning and crawling.

SniffAir on offsec.tools
SniffAir

A framework for wireless pentesting.

Gorsair on offsec.tools
Gorsair

Gives root access on remote docker containers that expose their APIs.

airgeddon on offsec.tools
airgeddon

This is a multi-use bash script for Linux systems to audit wireless networks.

Dome on offsec.tools
Dome

Script that makes active and/or passive scan to obtain subdomains and search for open ports.

scanless on offsec.tools
scanless

Online port scan scraper.

Firefly on offsec.tools
Firefly

Black box fuzzer for web applications.

APTRS on offsec.tools
APTRS

Automated penetration testing reporting system.

Pentest Mapper on offsec.tools
Pentest Mapper

Burp Suite extension for application pentest to write test cases and map flows and vulnerabilities.

PyCript on offsec.tools
PyCript

Bypass client-side encryption using custom logic for testing with Python and NodeJS.

Vulmap on offsec.tools
Vulmap

Online local vulnerability scanners project.

Skanuvaty on offsec.tools
Skanuvaty

Dangerously fast DNS/network/port scanner.

#dns   #ips   #ports   #scanner  

Metabigor on offsec.tools
Metabigor

Intelligence tool to do OSINT tasks and more but without any API key.

#asn   #osint   #recon  

enum4Linux on offsec.tools
enum4Linux

Enumerate data from Windows and Samba hosts.

GitHarvester on offsec.tools
GitHarvester

Tool used for harvesting information from GitHub.

certSniff on offsec.tools
certSniff

A certificate transparency log keyword sniffer written in Python.

WEF on offsec.tools
WEF

WiFi exploitation framework.

bypass-url-parser on offsec.tools
bypass-url-parser

Tool that tests MANY url bypasses to reach a 40X protected page.

Villain on offsec.tools
Villain

Backdoor generator and multi-session handler for sibling servers and sessions sharing.

ShadowSpray on offsec.tools
ShadowSpray

Spray shadow credentials across an entire domain.

autoSSRF on offsec.tools
autoSSRF

Smart context-based SSRF vulnerability scanner.

hoaxshell on offsec.tools
hoaxshell

Windows reverse shell payload generator and handler that abuses the http(s) protocol.

SpoolSploit on offsec.tools
SpoolSploit

Collection of Windows print spooler exploits and other utilities for practical exploitation.

PipeViewer on offsec.tools
PipeViewer

A tool that shows detailed information about named pipes in Windows.

CMSeek on offsec.tools
CMSeek

CMS Detection and Exploitation suite that supports over 180 other CMSs.

gateway-finder on offsec.tools
gateway-finder

Identify routers on the local LAN and paths to the Internet.

gateway-finder-imp on offsec.tools
gateway-finder-imp

Identify routers on the local LAN and paths to the Internet.

wifiphisher on offsec.tools
wifiphisher

The rogue access point framework.

undetected-chromedriver on offsec.tools
undetected-chromedriver

Optimized Selenium Chromedriver patch which does not trigger anti-bot services.

brutespray on offsec.tools
brutespray

Automatically attempts default creds on found services based on Nmap output.

RDP Scraper on offsec.tools
RDP Scraper

Enumerates users based off RDP Screenshots.

mitmAP on offsec.tools
mitmAP

A python program to create a fake AP and sniff data.

#mitm   #sniffer   #wifi  

PayGen on offsec.tools
PayGen

Tool to generate stable undetected payload.

afrog on offsec.tools
afrog

A vulnerability scanning tools for penetration testing.

gitleaks on offsec.tools
gitleaks

Protect and discover secrets using Gitleaks.

ggshield on offsec.tools
ggshield

Find multiple types of hardcoded secrets & types of infrastructure-as-code misconfigurations.

ShellPop on offsec.tools
ShellPop

Pop shells like a master.

awesome-cve-poc on offsec.tools
awesome-cve-poc

A collection about Proof of Concepts of Common Vulnerabilities and Exposures.

reapoc on offsec.tools
reapoc

OpenSource Poc && Vulnerable-Target Storage Box.

Fiddler Everywhere on offsec.tools
Fiddler Everywhere

Web debugging proxy for MacOS, Windows, and Linux.

yersinia on offsec.tools
yersinia

A framework for layer 2 attacks.

l0phtcrack on offsec.tools
l0phtcrack

Crack Windows passwords from hashes.

Qualys Cloud Platform on offsec.tools
Qualys Cloud Platform

The revolutionary architecture that powers Qualys' IT, security, and compliance cloud apps.

SSTImap on offsec.tools
SSTImap

Automatic SSTI detection tool with interactive interface.

Shodan on offsec.tools
Shodan

Search engine for Internet-connected devices.

dBmonster on offsec.tools
dBmonster

A multitool for tracking and locating nearby devices via their RF activities.

Netlas.io on offsec.tools
Netlas.io

Netlas.io is the network atlas of Internet. IP, DNS, Web, IoT devices, and etc.

AORT on offsec.tools
AORT

All in one recon tool for bug bounty.

infoooze on offsec.tools
infoooze

User-friendly OSINT tool that allows you to quickly and easily gather informations.

LanGuard on offsec.tools
LanGuard

Patch management, vulnerability scanning, and network auditing.

Nexpose on offsec.tools
Nexpose

Vulnerability scanner which aims to support the entire vulnerability management lifecycle.

Ophcrack on offsec.tools
Ophcrack

Windows password cracker based on rainbow tables.

dsniff on offsec.tools
dsniff

Collection of tools for network auditing and penetration testing.

Core Impact on offsec.tools
Core Impact

Designed to enable security teams to conduct advanced penetration tests with ease.

WebScarab on offsec.tools
WebScarab

Framework for analysing applications that communicate using the HTTP and HTTPS protocols.

Paros Proxy on offsec.tools
Paros Proxy

HTTP(S) proxy for assessing web application vulnerability.

Ettercap on offsec.tools
Ettercap

Free and open source network security tool for man-in-the-middle attacks on a LAN.

Kismet on offsec.tools
Kismet

Remote capture for all capture types over TCP sockets or websockets.

Cain and Abel on offsec.tools
Cain and Abel

Password recovery tool for Microsoft Operating Systems.

Nessus on offsec.tools
Nessus

The global gold standard in vulnerability assessment built for the modern attack surface.

TryHackMe on offsec.tools
TryHackMe

Hands-on cyber security training through real-world scenarios.

Hack The Box on offsec.tools
Hack The Box

Massive hacking playground, and infosec community.

DVWA on offsec.tools
DVWA

Damn Vulnerable Web Application.

bWAPP on offsec.tools
bWAPP

An extremely buggy web application!.

WebGoat on offsec.tools
WebGoat

Deliberately insecure application.

VulnHub on offsec.tools
VulnHub

Provide materials that allows anyone to gain practical 'hands-on' experience in security.

OWASP Juice Shop on offsec.tools
OWASP Juice Shop

Probably the most modern and sophisticated insecure web application.

OrbitalDump on offsec.tools
OrbitalDump

A simple multi-threaded distributed SSH brute-forcing tool.

GitHacker on offsec.tools
GitHacker

A Git source leak exploit tool that restores the entire Git repository, including data from stash.

XSSRocket on offsec.tools
XSSRocket

Written by Black Hat Ethical Hacking and #ChatGPT for offensive security and XSS attacks.

Ronin on offsec.tools
Ronin

A free and open source Ruby toolkit for security research and development.

Nosey Parker on offsec.tools
Nosey Parker

Command-line tool that finds secrets and sensitive information in textual data and Git history.

RadareEye on offsec.tools
RadareEye

Scan nearby devices and execute command when the target device comes in between range.

Vuls on offsec.tools
Vuls

Agent-less vulnerability scanner.

Offensive-Azure on offsec.tools
Offensive-Azure

Collection of offensive tools targeting Microsoft Azure written in Python to be platform agnostic.

#azure   #cloud  

Hawk on offsec.tools
Hawk

Network, recon and offensive-security tool for Linux.

Scapy on offsec.tools
Scapy

Powerful and interactive packet manipulation program and library.

Sub-Drill on offsec.tools
Sub-Drill

A very (very) FAST and simple subdomain finder based on online & free services.

s3recon on offsec.tools
s3recon

Amazon S3 bucket finder and crawler.

#aws   #buckets   #cloud  

bucket_finder on offsec.tools
bucket_finder

DigiNinja's bucket_finder utility.

#aws   #buckets   #cloud  

CloudMapper on offsec.tools
CloudMapper

CloudMapper helps you analyze your Amazon Web Services environments.

#aws   #cloud  

CloudJack on offsec.tools
CloudJack

Route53/CloudFront Vulnerability assessment utility.

CloudFrunt on offsec.tools
CloudFrunt

A tool for identifying misconfigured CloudFront domains.

Bucket Stream on offsec.tools
Bucket Stream

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

hardCIDR on offsec.tools
hardCIDR

Discover the netblocks or ranges (in CIDR notation) owned by the target organization.

#asn   #ips   #recon  

dnstwist on offsec.tools
dnstwist

A tool to monitor for potential spear phishing domains and send to Slack.

Mosca on offsec.tools
Mosca

Manual search tool to find bugs like a grep unix command.

autochrome on offsec.tools
autochrome

A shiny new copy of Chromium that will bring colors in your hunt.

PwnFox on offsec.tools
PwnFox

A Firefox/Burp Suite extension that provide usefull tools for your security audit.

EarlyBird on offsec.tools
EarlyBird

Sensitive data detection tool capable of scanning source code repositories.

detect-secrets on offsec.tools
detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

Aranea on offsec.tools
Aranea

OSINT tool used for web crawling or examining JavaScript files for likely useful data.

Can I Take Over DNS? on offsec.tools
Can I Take Over DNS?

A list of DNS providers and how to claim (sub)domains via missing hosted zones.

Nimbostratus on offsec.tools
Nimbostratus

Tool for fingerprinting and exploiting Amazon cloud infrastructures.

Oculus on offsec.tools
Oculus

OSINT tool used to discover environments, directories, and subdomains of a particular domain.

Legitify on offsec.tools
Legitify

Detect misconfigurations and security risks across GitHub and GitLab assets.

#github   #gitlab   #scm  

drek on offsec.tools
drek

A static-code-analysis tool for performing security-focused code reviews.

Agartha on offsec.tools
Agartha

Burp Suite extension for dynamic payload generation to detect injection flaws.

#burpsuite   #lfi   #payloads   #rce   #sqli   #xss  

WifiPass on offsec.tools
WifiPass

A simple wireless networks penetration testing toolkit.

Up HTTP Server on offsec.tools
Up HTTP Server

Simple HTTP listener for security testing.

Weaponised XSS Payloads on offsec.tools
Weaponised XSS Payloads

XSS payloads designed to turn alert(1) into P1.

mssqlproxy on offsec.tools
mssqlproxy

Perform lateral movement in restricted environments through a compromised MSSQL Server.

Apidor on offsec.tools
Apidor

Tool for automating the search for IDOR vulnerabilities in web applications and APIs.

Canvas on offsec.tools
Canvas

Assessment tool that allows penetration testing and hostile attack simulations.

DirBuster on offsec.tools
DirBuster

Multi threaded application to brute force directories and files names on web/application servers.

Highlighter and Extractor on offsec.tools
Highlighter and Extractor

Collect, categorize and highlight requests and/or responses according to their content.

jok3r on offsec.tools
jok3r

Network and Web Pentest Automation Framework.

ScoutSuite on offsec.tools
ScoutSuite

Multi-cloud security auditing tool.

xssor2 on offsec.tools
xssor2

Hack with JavaScript.

LiveTargetsFinder on offsec.tools
LiveTargetsFinder

Generates lists of live hosts and URLs.

Medusa on offsec.tools
Medusa

Medusa is a speedy, parallel, and modular, login brute-forcer.

Legion on offsec.tools
Legion

Aids in discovery, reconnaissance and exploitation of information systems.

WES-NG on offsec.tools
WES-NG

Windows Exploit Suggester - Next Generation.

CyberChef on offsec.tools
CyberChef

A web app for encryption, encoding, compression and data analysis.

IntelSpy on offsec.tools
IntelSpy

Perform automated network reconnaissance scans to gather network intelligence.

crackerjack on offsec.tools
crackerjack

Hashcat Web Interface.

LeakLooker-X on offsec.tools
LeakLooker-X

Discover, browse and monitor database/source code leaks.

Subra on offsec.tools
Subra

A Web-UI for subdomain enumeration.

AdvancedKeyHacks on offsec.tools
AdvancedKeyHacks

API Key/Token Exploitation Made easy.

fprobe on offsec.tools
fprobe

Take a list of domains/subdomains and probe for working http/https server.

bbscope on offsec.tools
bbscope

Scope gathering tool for multiple Bug Bounty platforms.

go-dork on offsec.tools
go-dork

The fastest dork scanner written in Go.

Linux Exploit Suggester on offsec.tools
Linux Exploit Suggester

Based on operating system release number.

Windows Exploit Suggester on offsec.tools
Windows Exploit Suggester

Compares target patch levels against the Microsoft vulnerability DB to detect missing patches.

windows-kernel-exploits on offsec.tools
windows-kernel-exploits

A list of Windows kernel exploits.

Rekono on offsec.tools
Rekono

Execute full pentesting processes combining multiple hacking tools automatically.

s3reverse on offsec.tools
s3reverse

The format of various S3 buckets is convert in one format.

#aws   #buckets   #cloud   #utils  

ADRT on offsec.tools
ADRT

Active Directory Report Tool.

padding-oracle-attacker on offsec.tools
padding-oracle-attacker

Execute padding oracle attacks with support for concurrent network requests and an elegant UI.

Runtime Mobile Security on offsec.tools
Runtime Mobile Security

A powerful web interface that helps you to manipulate Android and iOS Apps at Runtime.

Firebase-Extractor on offsec.tools
Firebase-Extractor

A tool written in python for scraping firebase data.

FridaAndroidTracer on offsec.tools
FridaAndroidTracer

Android application tracer powered by Frida.

Async DNS Brute on offsec.tools
Async DNS Brute

DNS asynchronous brute force utility.

Print-My-Shell on offsec.tools
Print-My-Shell

Automate the process of generating various reverse shells.

DroneSploit on offsec.tools
DroneSploit

Drone pentesting framework console.

Sourcegraph on offsec.tools
Sourcegraph

Search millions of open source repositories.

grep.app on offsec.tools
grep.app

Searches code from over a half million public repositories on GitHub.

Nessus database export on offsec.tools
Nessus database export

Export Nessus results to a relational database for use in reports, analysis, or whatever else.

SharpImpersonation on offsec.tools
SharpImpersonation

A User Impersonation tool - via Token or Shellcode injection.

WinPwn on offsec.tools
WinPwn

Automation for internal Windows pentest / AD-Security.

SweetPotato on offsec.tools
SweetPotato

A collection of various Windows privilege escalation techniques from service accounts to SYSTEM.

exfilkit on offsec.tools
exfilkit

Data exfiltration utility for testing detection capabilities.

#utils  

MagicRecon on offsec.tools
MagicRecon

A powerful shell script to maximize the recon and data collection process.

haktldextract on offsec.tools
haktldextract

Extract domains/subdomains from URLs en masse.

default-http-login-hunter on offsec.tools
default-http-login-hunter

Login hunter of default credentials for administrative web interfaces.

burp-exporter on offsec.tools
burp-exporter

Copy a Burp Suite request to a file or the clipboard as multiple programming languages functions.

qsinject on offsec.tools
qsinject

Allows you to quickly substitute query string values with regex matches, one-at-a-time.

PCredz on offsec.tools
PCredz

This tool extracts secrets from a pcap file or from a live interface.

eLdap-Ldap-Search-and-Filter on offsec.tools
eLdap-Ldap-Search-and-Filter

A tool that helps users searching and filtering queries in Ldap environment.

LazyHunter on offsec.tools
LazyHunter

A framework that provides a web UI to commonly used Bug Hunting/Pentesting tools.

lk_scraper on offsec.tools
lk_scraper

A fully configurable LinkedIn scraper: scrape anything within LinkedIn.

pown.js on offsec.tools
pown.js

Security testing and exploitation toolkit.

gwdomains on offsec.tools
gwdomains

Sub domain wild card filtering tool.

wifipumpkin3 on offsec.tools
wifipumpkin3

Powerful framework for rogue access point attack.

pivotnacci on offsec.tools
pivotnacci

A tool to make socks connections through HTTP agents.

pwncat on offsec.tools
pwncat

Netcat on steroids with many extra features.

Nozaki on offsec.tools
Nozaki

HTTP fuzzer engine security oriented.

#fuzzing   #http   #yaml  

APKEnum on offsec.tools
APKEnum

Passive enumeration utility For Android applications.

Trishul on offsec.tools
Trishul

Burp Suite Extension to hunt for common vulnerabilities found in websites.

eos on offsec.tools
eos

Enemies Of Symfony - debug mode Symfony looter.

vhosts-sieve on offsec.tools
vhosts-sieve

Searching for virtual hosts among non-resolvable domains.

SonarSearch on offsec.tools
SonarSearch

A rapid API for the project Sonar dataset.

The XSS rat on offsec.tools
The XSS rat

The XSS rat YouTube channel.

LiveOverflow on offsec.tools
LiveOverflow

LiveOverflow YouTube channel.

Awesome Bug Bounty on offsec.tools
Awesome Bug Bounty

A comprehensive curated list of available Bug Bounty & disclosure programs and writeups.

Bug Bounty Reference on offsec.tools
Bug Bounty Reference

A list of Bug Bounty writeups that is categorized by the bug nature.

Awesome BugBounty Writeups on offsec.tools
Awesome BugBounty Writeups

A curated list of bugbounty writeups (Bug type wise).

SharpHose on offsec.tools
SharpHose

Asynchronous password spraying tool for Windows environments.

Yet Another Sniffer on offsec.tools
Yet Another Sniffer

A network analyzer that make easy to extract informations about network traffic.

nmap-query-xml on offsec.tools
nmap-query-xml

A simple program to query nmap XML files in the terminal.

#ips   #ports   #utils  

NSDetect on offsec.tools
NSDetect

Utility to detect AWS NS Takeover.

Slack Watchman on offsec.tools
Slack Watchman

Monitoring your Slack workspaces for sensitive informations.

differer on offsec.tools
differer

differer finds how URLs are parsed by different languages in order to help bug hunters break filters.

Transformations on offsec.tools
Transformations

Understand how input is transformed on a system, which can help to craft payloads.

Words Scraper on offsec.tools
Words Scraper

Selenium based web scraper to generate passwords list.