A vast collection of security tools for bug bounty, pentest and red teaming

#recon

hunter.how on offsec.tools
hunter.how

Internet search engines for security researchers.

favirecon on offsec.tools
favirecon

Use favicon.ico to improve your target recon phase.

Rock-ON on offsec.tools
Rock-ON

All in one recon tool that just get a single domain name and do all of the work alone.

SimplyEmail on offsec.tools
SimplyEmail

Email recon made fast and easy, with a framework to build on.

PhoneInfoga on offsec.tools
PhoneInfoga

Information gathering framework for phone numbers.

RED HAWK on offsec.tools
RED HAWK

All in one tool for information gathering, vulnerability scanning and crawling.

Dome on offsec.tools
Dome

Script that makes active and/or passive scan to obtain subdomains and search for open ports.

Metabigor on offsec.tools
Metabigor

Intelligence tool to do OSINT tasks and more but without any API key.

#asn   #osint   #recon  

GitHarvester on offsec.tools
GitHarvester

Tool used for harvesting information from GitHub.

certSniff on offsec.tools
certSniff

A certificate transparency log keyword sniffer written in Python.

Shodan on offsec.tools
Shodan

Search engine for Internet-connected devices.

Netlas.io on offsec.tools
Netlas.io

Netlas.io is the network atlas of Internet. IP, DNS, Web, IoT devices, and etc.

AORT on offsec.tools
AORT

All in one recon tool for bug bounty.

hardCIDR on offsec.tools
hardCIDR

Discover the netblocks or ranges (in CIDR notation) owned by the target organization.

#asn   #ips   #recon  

DirBuster on offsec.tools
DirBuster

Multi threaded application to brute force directories and files names on web/application servers.

IntelSpy on offsec.tools
IntelSpy

Perform automated network reconnaissance scans to gather network intelligence.

Subra on offsec.tools
Subra

A Web-UI for subdomain enumeration.

Rekono on offsec.tools
Rekono

Execute full pentesting processes combining multiple hacking tools automatically.

MagicRecon on offsec.tools
MagicRecon

A powerful shell script to maximize the recon and data collection process.

LazyHunter on offsec.tools
LazyHunter

A framework that provides a web UI to commonly used Bug Hunting/Pentesting tools.

pown.js on offsec.tools
pown.js

Security testing and exploitation toolkit.

gwdomains on offsec.tools
gwdomains

Sub domain wild card filtering tool.

vhosts-sieve on offsec.tools
vhosts-sieve

Searching for virtual hosts among non-resolvable domains.

The XSS rat on offsec.tools
The XSS rat

The XSS rat YouTube channel.

LiveOverflow on offsec.tools
LiveOverflow

LiveOverflow YouTube channel.

Angry IP Scanner on offsec.tools
Angry IP Scanner

Fast and simple-to-use open-source/cross-platform network scanner.

#ips   #ports   #recon   #scanner  

dirhunt on offsec.tools
dirhunt

Find web directories without bruteforce.

cc.py on offsec.tools
cc.py

Extracting URLs of a specific target based on the results of commoncrawl.org.

ScreenShooter on offsec.tools
ScreenShooter

Convert your masscan/subdomain-scan results into screenshots for better analysis.

curate on offsec.tools
curate

A tool for fetching archived URLs.

TLD Scanner on offsec.tools
TLD Scanner

Scan all possible TLD's for a given domain name.

WhatsMyName on offsec.tools
WhatsMyName

Enumerate usernames across many websites.

FireShodanMap on offsec.tools
FireShodanMap

Realtime map that integrates Firebase, Google Maps and Shodan.

#ips   #ports   #recon   #shodan  

Web Crawler Security Tool on offsec.tools
Web Crawler Security Tool

A web crawler oriented to infosec.

CTFR on offsec.tools
CTFR

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

ChopChop on offsec.tools
ChopChop

Scan endpoints and identify exposition of sensitive services/files/folders.

Fingerprinter on offsec.tools
Fingerprinter

CMS/LMS/Library etc Versions Fingerprinter.

ASNLookup on offsec.tools
ASNLookup

Leverage ASN to look up IP addresses owned by a specific organization.

#asn   #ips   #ports   #recon  

STÖK Fredrik on offsec.tools
STÖK Fredrik

STÖK Fredrik YouTube channel.

NahamSec on offsec.tools
NahamSec

NahamSec Twitch channel.

Certificate Ripper on offsec.tools
Certificate Ripper

A CLI tool to extract server certificates.

ffuf on offsec.tools
ffuf

Fast web fuzzer written in Go.