Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Offensive Security for Exploitation

Ethical hacking tools and resources for penetration testing and red team operations. Task: ExploitationExplore 13 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Offensive Security
Exploitation

RELATED TASKS

ai (1)analytics (1)anti-forensics (1)antivirus (1)apache (3)api-metadata (1)api-security (2)apktool (1)app-security (1)apparmor (6)

PINNED

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
5
Free
Resources
Security Education
Resources
Training
Security Information
Education
Security Community
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
5
Free
Resources
Security Education
Resources
Training
+3
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
3
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
3
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
2
Commercial
Offensive Security
Ai
Penetration Testing
Automation
Security Testing
Exploitation
Reconnaissance
Reporting
Security Assessment
Offensive Security
Vulnerability Exploitation
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
2
Commercial
Offensive Security
Ai
Penetration Testing
Automation
+7
SSRFmap
Automatic SSRF fuzzer and exploitation tool
0
Free
Offensive Security
Ssrf
Fuzzer
Exploitation
Penetration Testing
SSRFmap
Automatic SSRF fuzzer and exploitation tool
0
Free
Offensive Security
Ssrf
Fuzzer
Exploitation
+1
dref
A DNS rebinding exploitation framework
0
Free
Offensive Security
Dns
Rebinding
Exploitation
Framework
Security Research
Penetration Testing
dref
A DNS rebinding exploitation framework
0
Free
Offensive Security
Dns
Rebinding
Exploitation
+3
ROP Wargame Repository
Collection of Return-Oriented Programming challenges for practicing exploitation skills.
0
Free
Offensive Security
Rop
Binary Exploitation
Exploitation
Binary Security
Security Research
ROP Wargame Repository
Collection of Return-Oriented Programming challenges for practicing exploitation skills.
0
Free
Offensive Security
Rop
Binary Exploitation
Exploitation
+2
libformatstr.py
Small script to simplify format string exploitation.
0
Free
Offensive Security
Exploitation
Binary Exploitation
Binary Security
libformatstr.py
Small script to simplify format string exploitation.
0
Free
Offensive Security
Exploitation
Binary Exploitation
Binary Security
Pacu
Pacu is an open-source AWS exploitation framework for offensive security testing against cloud environments.
0
Free
Offensive Security
Aws
Cloud Security
Pentest
Exploitation
Offensive Security
Python
Pacu
Pacu is an open-source AWS exploitation framework for offensive security testing against cloud environments.
0
Free
Offensive Security
Aws
Cloud Security
Pentest
+3
Binary Exploitation Tutorial
Comprehensive tutorial on modern exploitation techniques with a focus on understanding exploitation from scratch.
0
Free
Offensive Security
Exploitation
Binary Exploitation Tutorial
Comprehensive tutorial on modern exploitation techniques with a focus on understanding exploitation from scratch.
0
Free
Offensive Security
Exploitation
exploit_me
Very vulnerable ARM/ARM64[AARCH64] application with various levels of vulnerabilities for exploitation training.
0
Free
Offensive Security
Ctf
Exploitation
Arm
exploit_me
Very vulnerable ARM/ARM64[AARCH64] application with various levels of vulnerabilities for exploitation training.
0
Free
Offensive Security
Ctf
Exploitation
Arm
aem-hacker
AEM (Adobe Experience Manager) Hacker is a tool designed to help security researchers and penetration testers identify and exploit vulnerabilities in AEM-based systems.
0
Free
Offensive Security
Offensive Security
Vulnerability Scanning
Exploitation
Web Crawler
aem-hacker
AEM (Adobe Experience Manager) Hacker is a tool designed to help security researchers and penetration testers identify and exploit vulnerabilities in AEM-based systems.
0
Free
Offensive Security
Offensive Security
Vulnerability Scanning
Exploitation
+1
The Penetration Testing Execution Standard
A standard for conducting penetration tests, covering seven main sections from planning to reporting.
0
Free
Offensive Security
Penetration Testing
Vulnerability Research
Exploitation
Reporting
The Penetration Testing Execution Standard
A standard for conducting penetration tests, covering seven main sections from planning to reporting.
0
Free
Offensive Security
Penetration Testing
Vulnerability Research
Exploitation
+1
Legion
An open source network penetration testing framework with automatic recon and scanning capabilities.
0
Free
Offensive Security
Penetration Testing
Network Security
Reconnaissance
Scanning
Exploitation
Framework
Legion
An open source network penetration testing framework with automatic recon and scanning capabilities.
0
Free
Offensive Security
Penetration Testing
Network Security
Reconnaissance
+3
CrackMapExec
A post-exploitation tool for pentesting Active Directory
0
Free
Offensive Security
Post Exploitation
Pentesting
Exploitation
CrackMapExec
A post-exploitation tool for pentesting Active Directory
0
Free
Offensive Security
Post Exploitation
Pentesting
Exploitation
Commix
Open source penetration testing tool for detecting and exploiting command injection vulnerabilities.
0
Free
Offensive Security
Penetration Testing
Vulnerability Scanning
Exploitation
Security Testing
Python
Commix
Open source penetration testing tool for detecting and exploiting command injection vulnerabilities.
0
Free
Offensive Security
Penetration Testing
Vulnerability Scanning
Exploitation
+2

1