Offensive Security
security-testing

Other Tags in this Category
api-metadataapi-securityapparmorappsecappsec-testingappsec-toolasset-discoveryasset-inventoryattack-toolbug-huntingburp-suitecrawlerctfdata-miningdirectory-traversaldnsdns-rebindingdockerdocker-composeedrendpointexploitexploitationfile-inclusionfuzzerfuzzinggographqlguiincident-responseinteractivejavascriptlfilocal-file-inclusionmetasploitpassword-crackingpayloadspenetration-testingpentestingprotocol-analysisrebindingreverse-shellscannerscanningscriptingsecret-detectionsecurity-researchsecurity-testingshellsiemssrfsubdomain-enumerationsubdomain-takeovervulnerability-managementvulnerability-scanningwebweb-application-securityweb-scanningweb-scrapingweb-securityxss

FEATURED

Feature Your Cybersecurity Product

Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.

Reach out!

NEW

GraphQLmap Logo

GraphQLmap

0 (0)

A scripting engine for interacting with GraphQL endpoints for pentesting purposes.

Offensive Security
Free
graphqlpentestingscriptingendpointsecurity-testingapi-security
IntruderPayloads Logo

IntruderPayloads

0 (0)

A collection of payloads and methodologies for web pentesting.

Offensive Security
Free
burp-suitepayloadsfuzzingpentestingsecurity-testing
XSpear Logo

XSpear

0 (0)

A powerful XSS scanning and parameter analysis tool

Offensive Security
Free
xssscanningsecurity-testingvulnerability-scanning
vaf Logo

vaf

0 (0)

A cross-platform web fuzzer written in Nim

Offensive Security
Free
fuzzingprotocol-analysissecurity-testing
Turbo Intruder Logo

Turbo Intruder

0 (0)

A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

Offensive Security
Free
burp-suitevulnerability-scanninghttp-requestspenetration-testingsecurity-testing
Injectus Logo

Injectus

0 (0)

A CRLF and open redirect fuzzer

Offensive Security
Free
fuzzeropen-redirectsecurity-testingvulnerability-scanning
OneFuzz Logo

OneFuzz

0 (0)

Self-hosted Fuzzing-As-A-Service platform for continuous developer-driven fuzzing.

Offensive Security
Free
fuzzingsecurity-testingdevsecops
AndroFuzz Logo

AndroFuzz

0 (0)

A simple file format fuzzer for Android that can fuzz multiple readers at once

Offensive Security
Free
fuzzingfile-formatsecurity-testing
Wifislax Logo

Wifislax

0 (0)

GNU/Linux Wireless distribution for security testing with XFCE desktop environment.

Offensive Security
Free
wireless-securitylinuxsecurity-testingpentest
Project Zero iPhone Messaging Tools Logo

Project Zero iPhone Messaging Tools

0 (0)

Repository of tools for testing iPhone messaging by Project Zero

Offensive Security
Free
blue-teambug-bountybug-huntingfuzzingsecurity-testingvulnerability-research
AppUse Logo

AppUse

0 (0)

A VM for mobile application security testing, Android and iOS applications, with custom-made tools and scripts.

Offensive Security
Free
appseciosmobile-securitypenetration-testingpentestingsecurity-testing
Sliver Logo

Sliver

0 (0)

Adversary emulation framework for testing security measures in network environments.

Offensive Security
Free
security-testingred-teampenetration-testingsecurity-operations
Chameleon Logo

Chameleon

0 (0)

Chameleon aids in evading proxy categorization to bypass internet filters.

Offensive Security
Free
proxysecurity-testing
Vulnerable-AD Logo

Vulnerable-AD

0 (0)

Create a vulnerable active directory for testing various Active Directory attacks.

Offensive Security
Free
red-teampenetration-testingattack-simulationsecurity-testing
DET (extensible) Data Exfiltration Toolkit Logo

DET (extensible) Data Exfiltration Toolkit

0 (0)

DET (extensible) Data Exfiltration Toolkit is a proof of concept tool for performing Data Exfiltration using multiple channels simultaneously.

Offensive Security
Free
proof-of-conceptnetwork-monitoringsecurity-testing
OWASP OWTF Logo

OWASP OWTF

0 (0)

OWASP OWTF is a penetration testing framework focused on efficiency and alignment with security standards.

Offensive Security
Free
penetration-testingsecurity-testingowaspsecurity-standardspentesting

Penetration Testing Execution Standard (PTES)

0 (0)

A structured approach for conducting penetration tests with seven main sections covering all aspects of the test.

Offensive Security
Free
penetration-testingsecurity-testingvulnerability-assessmentcompliance
WordPress Exploit Framework Logo

WordPress Exploit Framework

0 (0)

A Ruby framework designed to aid in the penetration testing of WordPress systems.

Offensive Security
Free
penetration-testingwordpressrubyframeworkexploitsecurity-testing
Modlishka Logo

Modlishka

0 (0)

Modlishka is a reverse proxy tool for intercepting and manipulating HTTP traffic, ideal for penetration testers, security researchers, and developers to analyze and test web applications.

Offensive Security
Free
reverse-proxypenetration-testingweb-application-securitysecurity-testing
Mortar Logo

Mortar

0 (0)

Mortar is an evasion technique to defeat and divert detection and prevention of security products, including AV, EDR, and XDR solutions.

Offensive Security
Free
penetration-testingred-teamsecurity-testingthreat-research
Metasploit Framework Logo

Metasploit Framework

0 (0)

A powerful penetration testing platform for identifying vulnerabilities and weaknesses in computer systems.

Offensive Security
Free
penetration-testingmetasploitvulnerability-scanningsecurity-testingpenetration-testing-framework
Kali Logo

Kali

0 (0)

Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.

Offensive Security
Free
digital-forensicspenetration-testingnetwork-analysisvulnerability-assessmentsecurity-testing
DueDLLigence Logo

DueDLLigence

0 (0)

DueDLLigence is an open-source tool for identifying and analyzing DLL hijacking vulnerabilities in Windows applications, providing automated analysis and remediation guidance.

Offensive Security
Free
appsecapparmorbinary-securitydllsecurity-auditsecurity-testingwindows

SmashTheStack Wargaming Network

0 (0)

A wargaming network for penetration testers to practice their skills in a realistic environment.

Offensive Security
Free
penetration-testingsecurity-trainingcyber-rangesecurity-testingvulnerability-assessment
domfind Logo

domfind

0 (0)

Python utility for testing the existence of domain names under different TLDs to find malicious subdomains.

Offensive Security
Free
dnssubdomainphishingmalware-detectionsecurity-testing
Commix Logo

Commix

0 (0)

Open source penetration testing tool for detecting and exploiting command injection vulnerabilities.

Offensive Security
Free
penetration-testingvulnerability-scanningexploitationsecurity-testingpython
MockSSH Logo

MockSSH

0 (0)

Emulate operating systems behind SSH servers for testing automation.

Offensive Security
Free
sshtestingautomationsecurity-testing