Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Offensive Security for Security Testing

Ethical hacking tools and resources for penetration testing and red team operations. Task: Security Testing
Explore 28 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Offensive Security
Security Testing

RELATED TASKS

analytics (1)anti-forensics (1)antivirus (1)apache (3)api-metadata (1)api-security (2)apktool (1)app-security (1)apparmor (6)applocker (1)

PINNED

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
Training
Security Professionals
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
+2
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

Burp Suite Professional
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
1
Commercial
Offensive Security
Penetration Testing
Web Security
Scanner
Proxy
Security Testing
Vulnerability Assessment
Api Security
Burp Suite
Web App Security
Security Automation
Burp Suite Professional
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
1
Commercial
Offensive Security
Penetration Testing
Web Security
Scanner
+7
GraphQLmap
A scripting engine for interacting with GraphQL endpoints for pentesting purposes.
0
Free
Offensive Security
Graphql
Pentesting
Scripting
Endpoint
Security Testing
Api Security
GraphQLmap
A scripting engine for interacting with GraphQL endpoints for pentesting purposes.
0
Free
Offensive Security
Graphql
Pentesting
Scripting
+3
IntruderPayloads
A collection of payloads and methodologies for web pentesting.
0
Free
Offensive Security
Burp Suite
Payloads
Fuzzing
Pentesting
Security Testing
IntruderPayloads
A collection of payloads and methodologies for web pentesting.
0
Free
Offensive Security
Burp Suite
Payloads
Fuzzing
+2
XSpear
A powerful XSS scanning and parameter analysis tool
0
Free
Offensive Security
Xss
Scanning
Security Testing
Vulnerability Scanning
XSpear
A powerful XSS scanning and parameter analysis tool
0
Free
Offensive Security
Xss
Scanning
Security Testing
+1
vaf
A cross-platform web fuzzer written in Nim
0
Free
Offensive Security
Fuzzing
Protocol Analysis
Security Testing
vaf
A cross-platform web fuzzer written in Nim
0
Free
Offensive Security
Fuzzing
Protocol Analysis
Security Testing
Turbo Intruder
A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
0
Free
Offensive Security
Burp Suite
Vulnerability Scanning
Http Requests
Penetration Testing
Security Testing
Turbo Intruder
A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
0
Free
Offensive Security
Burp Suite
Vulnerability Scanning
Http Requests
+2
Injectus
A CRLF and open redirect fuzzer
0
Free
Offensive Security
Fuzzer
Open Redirect
Security Testing
Vulnerability Scanning
Injectus
A CRLF and open redirect fuzzer
0
Free
Offensive Security
Fuzzer
Open Redirect
Security Testing
+1
OneFuzz
Self-hosted Fuzzing-As-A-Service platform for continuous developer-driven fuzzing.
0
Free
Offensive Security
Fuzzing
Security Testing
Devsecops
OneFuzz
Self-hosted Fuzzing-As-A-Service platform for continuous developer-driven fuzzing.
0
Free
Offensive Security
Fuzzing
Security Testing
Devsecops
AndroFuzz
A simple file format fuzzer for Android that can fuzz multiple readers at once
0
Free
Offensive Security
Fuzzing
File Format
Security Testing
AndroFuzz
A simple file format fuzzer for Android that can fuzz multiple readers at once
0
Free
Offensive Security
Fuzzing
File Format
Security Testing
Wifislax
GNU/Linux Wireless distribution for security testing with XFCE desktop environment.
0
Free
Offensive Security
Wireless Security
Linux
Security Testing
Pentest
Wifislax
GNU/Linux Wireless distribution for security testing with XFCE desktop environment.
0
Free
Offensive Security
Wireless Security
Linux
Security Testing
+1
Project Zero iPhone Messaging Tools
Repository of tools for testing iPhone messaging by Project Zero
0
Free
Offensive Security
Blue Team
Bug Bounty
Bug Hunting
Fuzzing
Security Testing
Vulnerability Research
Project Zero iPhone Messaging Tools
Repository of tools for testing iPhone messaging by Project Zero
0
Free
Offensive Security
Blue Team
Bug Bounty
Bug Hunting
+3
AppUse
A VM for mobile application security testing, Android and iOS applications, with custom-made tools and scripts.
0
Free
Offensive Security
Appsec
Ios
Mobile Security
Penetration Testing
Pentesting
Security Testing
AppUse
A VM for mobile application security testing, Android and iOS applications, with custom-made tools and scripts.
0
Free
Offensive Security
Appsec
Ios
Mobile Security
+3
Sliver
Adversary emulation framework for testing security measures in network environments.
0
Free
Offensive Security
Security Testing
Red Team
Penetration Testing
Security Operations
Sliver
Adversary emulation framework for testing security measures in network environments.
0
Free
Offensive Security
Security Testing
Red Team
Penetration Testing
+1
Chameleon
Chameleon aids in evading proxy categorization to bypass internet filters.
0
Free
Offensive Security
Proxy
Security Testing
Chameleon
Chameleon aids in evading proxy categorization to bypass internet filters.
0
Free
Offensive Security
Proxy
Security Testing

1
2
Next