A vast collection of security tools for bug bounty, pentest and red teaming

#directories

31 results
smbmap on offsec.tools
Featured
smbmap

A handy SMB enumeration tool.

#directories   #samba   #shares  

wikto on offsec.tools
wikto

Nikto for Windows with some extra features.

#directories   #scanner  

RedTeam_toolkit on offsec.tools
RedTeam_toolkit

Open source Django offensive webapp which is keeping the best tools used in the redteaming.

#cves   #directories   #reports   #scanner   #vulnerabilities   #xss  

Rock-ON on offsec.tools
Rock-ON

All in one recon tool that just get a single domain name and do all of the work alone.

#asn   #crawler   #directories   #domains   #ips   #ports   #recon   #subdomains   #subto  

Oculus on offsec.tools
Oculus

OSINT tool used to discover environments, directories, and subdomains of a particular domain.

#aws   #azure   #cloud   #directories   #emails   #firebase   #fuzzing   #osint   #subdomains  

DirBuster on offsec.tools
DirBuster

Multi threaded application to brute force directories and files names on web/application servers.

#bruteforce   #directories   #files   #recon  

Legion on offsec.tools
Legion

Aids in discovery, reconnaissance and exploitation of information systems.

#cves   #directories   #framework   #network   #reports   #scanner   #ssl  

gitscraper on offsec.tools
gitscraper

Scrapes public GitHub repositories for common naming conventions in variables, folders and files.

#directories   #endpoints   #files   #github   #parameters   #resources  

Hamburglar on offsec.tools
Hamburglar

Collect useful information from urls, directories, and files.

#crypto   #directories   #emails   #endpoints   #files   #git   #regexp   #secrets  

dirhunt on offsec.tools
dirhunt

Find web directories without bruteforce.

#certificates   #commoncrawl   #crawler   #directories   #endpoints   #recon   #webarchives  

ChopChop on offsec.tools
ChopChop

Scan endpoints and identify exposition of sensitive services/files/folders.

#directories   #endpoints   #recon   #scanner  

Scout on offsec.tools
Scout

Discover a web server's undisclosed files, directories and VHOSTs.

#directories   #fuzzing   #subdomains  

BurpSmartBuster on offsec.tools
BurpSmartBuster

A Burp Suite content discovery plugin that add the smart into the Buster.

#burpsuite   #directories   #endpoints  

DirSearch on offsec.tools
DirSearch

A Go implementation of dirsearch.

#directories  

crawley on offsec.tools
crawley

The unix-way web crawler.

#crawler   #directories   #endpoints  

Dirstalk on offsec.tools
Dirstalk

Multi threaded application designed to brute force paths on web servers.

#directories   #endpoints  

Filebuster on offsec.tools
Filebuster

An extremely fast and flexible web fuzzer.

#directories   #endpoints   #fuzzing  

RecurseBuster on offsec.tools
RecurseBuster

Rapid content discovery tool for recursively querying webservers.

#directories   #endpoints  

Scilla on offsec.tools
Scilla

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration.

#directories   #dns   #ports   #subdomains  

skipfish on offsec.tools
skipfish

Active web application security reconnaissance tool.

#crawler   #directories   #endpoints   #reports   #scanner   #sitemap  

fuzzagotchi on offsec.tools
fuzzagotchi

A fuzzing tool written in Go. It helps your pentesting journey.

#directories   #endpoints   #fuzzing   #parameters  

gospider on offsec.tools
gospider

Fast web spider written in Go.

#aws   #buckets   #directories   #endpoints  

crithit on offsec.tools
crithit

Takes a single wordlist item and tests it one by one over a large collection of websites.

#directories   #endpoints  

Gobuster on offsec.tools
Gobuster

Directory/File, DNS and VHost busting tool written in Go.

#directories  

Feroxbuster on offsec.tools
Feroxbuster

A fast, simple, recursive content discovery tool written in Rust.

#directories   #endpoints   #fuzzing  

Nikto on offsec.tools
Nikto

Nikto web server scanner.

#directories   #scanner  

Wfuzz on offsec.tools
Wfuzz

Web application fuzzer.

#directories   #endpoints   #fuzzing  

Dirb on offsec.tools
Dirb

Web Fuzzer.

#directories   #endpoints  

GRecon on offsec.tools
GRecon

Run a Google based passive recon against your scope.

#directories   #google   #subdomains   #wordpress  

dirsearch on offsec.tools
dirsearch

Web path scanner.

#directories  

ffuf on offsec.tools
ffuf

Fast web fuzzer written in Go.

#bruteforce   #directories   #endpoints   #recon