A vast collection of security tools for bug bounty, pentest and red teaming

#directories

smbmap on offsec.tools
Featured
smbmap

A handy SMB enumeration tool.

wikto on offsec.tools
wikto

Nikto for Windows with some extra features.

RedTeam_toolkit on offsec.tools
RedTeam_toolkit

Open source Django offensive webapp which is keeping the best tools used in the redteaming.

Rock-ON on offsec.tools
Rock-ON

All in one recon tool that just get a single domain name and do all of the work alone.

Oculus on offsec.tools
Oculus

OSINT tool used to discover environments, directories, and subdomains of a particular domain.

DirBuster on offsec.tools
DirBuster

Multi threaded application to brute force directories and files names on web/application servers.

Legion on offsec.tools
Legion

Aids in discovery, reconnaissance and exploitation of information systems.

gitscraper on offsec.tools
gitscraper

Scrapes public GitHub repositories for common naming conventions in variables, folders and files.

Hamburglar on offsec.tools
Hamburglar

Collect useful information from urls, directories, and files.

dirhunt on offsec.tools
dirhunt

Find web directories without bruteforce.

ChopChop on offsec.tools
ChopChop

Scan endpoints and identify exposition of sensitive services/files/folders.

Scout on offsec.tools
Scout

Discover a web server's undisclosed files, directories and VHOSTs.

BurpSmartBuster on offsec.tools
BurpSmartBuster

A Burp Suite content discovery plugin that add the smart into the Buster.

DirSearch on offsec.tools
DirSearch

A Go implementation of dirsearch.

crawley on offsec.tools
crawley

The unix-way web crawler.

Dirstalk on offsec.tools
Dirstalk

Multi threaded application designed to brute force paths on web servers.

Filebuster on offsec.tools
Filebuster

An extremely fast and flexible web fuzzer.

RecurseBuster on offsec.tools
RecurseBuster

Rapid content discovery tool for recursively querying webservers.

Scilla on offsec.tools
Scilla

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration.

skipfish on offsec.tools
skipfish

Active web application security reconnaissance tool.

fuzzagotchi on offsec.tools
fuzzagotchi

A fuzzing tool written in Go. It helps your pentesting journey.

gospider on offsec.tools
gospider

Fast web spider written in Go.

crithit on offsec.tools
crithit

Takes a single wordlist item and tests it one by one over a large collection of websites.

Gobuster on offsec.tools
Gobuster

Directory/File, DNS and VHost busting tool written in Go.

Feroxbuster on offsec.tools
Feroxbuster

A fast, simple, recursive content discovery tool written in Rust.

Nikto on offsec.tools
Nikto

Nikto web server scanner.

Wfuzz on offsec.tools
Wfuzz

Web application fuzzer.

Dirb on offsec.tools
Dirb

Web Fuzzer.

GRecon on offsec.tools
GRecon

Run a Google based passive recon against your scope.

dirsearch on offsec.tools
dirsearch

Web path scanner.

ffuf on offsec.tools
ffuf

Fast web fuzzer written in Go.