offsec.tools
A vast collection of security tools for bug bounty, pentest and red teaming
#fuzzing
45 results

Sponsor
Nuclei templates
Community curated list of templates for the Nuclei engine to find security vulnerabilities.





Oculus
OSINT tool used to discover environments, directories, and subdomains of a particular domain.









SecLists
Collection of multiple types of lists used during security assessments, collected in one place.

BlackWidow
Web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.






IntruderPayloads
Payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.





FuzzDB
Attack patterns and primitives for black-box application fault injection and resource discovery.


















Burp Suite
The class-leading vulnerability scanning, penetration testing, and web app security platform.