Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Offensive Security

Ethical hacking tools and resources for penetration testing and red team operations.Explore 276 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Offensive Security

PINNED

CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
1
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
Security Operations
Cti
Threat Detection
Security Monitoring
Rule Management
Threat Hunting
Security Information And Event Management
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
1
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
+7
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

racepwn
A framework for testing and exploiting race conditions in software
0
Free
Offensive Security
Blue Team
Red Team
Penetration Testing
Penetration Testing Framework
racepwn
A framework for testing and exploiting race conditions in software
0
Free
Offensive Security
Blue Team
Red Team
Penetration Testing
+1
Injectus
A CRLF and open redirect fuzzer
0
Free
Offensive Security
Fuzzer
Open Redirect
Security Testing
Vulnerability Scanning
Injectus
A CRLF and open redirect fuzzer
0
Free
Offensive Security
Fuzzer
Open Redirect
Security Testing
+1
Turbo Intruder Scripts
A collection of scripts for Turbo Intruder, a penetration testing tool
0
Free
Offensive Security
Penetration Testing
Security Research
Automation
Scripting
Turbo Intruder Scripts
A collection of scripts for Turbo Intruder, a penetration testing tool
0
Free
Offensive Security
Penetration Testing
Security Research
Automation
+1
Singularity
A DNS rebinding attack framework for security researchers and penetration testers.
0
Free
Offensive Security
Dns Rebinding
Penetration Testing
Security Research
Web Application Security
Network Security
Singularity
A DNS rebinding attack framework for security researchers and penetration testers.
0
Free
Offensive Security
Dns Rebinding
Penetration Testing
Security Research
+2
SSTImap
A tool for detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities
0
Free
Offensive Security
SSTImap
A tool for detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities
0
Free
Offensive Security
requests-racer
A Python library for exploiting race conditions in web apps
0
Free
Offensive Security
Appsec
Web App Security
Web Security
Exploit
requests-racer
A Python library for exploiting race conditions in web apps
0
Free
Offensive Security
Appsec
Web App Security
Web Security
+1
ThreatCheck
A comprehensive malware-analysis tool that utilizes external AV scanners to identify malicious elements in binary files.
0
Free
Offensive Security
Malware Analysis
Binary Analysis
Antivirus
File Analysis
ThreatCheck
A comprehensive malware-analysis tool that utilizes external AV scanners to identify malicious elements in binary files.
0
Free
Offensive Security
Malware Analysis
Binary Analysis
Antivirus
+1
GadgetToJScript
A tool for generating .NET serialized gadgets for triggering .NET assembly load/execution.
0
Free
Offensive Security
Appsec
Binary Security
Exploit
GadgetToJScript
A tool for generating .NET serialized gadgets for triggering .NET assembly load/execution.
0
Free
Offensive Security
Appsec
Binary Security
Exploit
C3
C3 is a framework for creating custom C2 channels, integrating with existing offensive toolkits.
0
Free
Offensive Security
C2
Command And Control
Offensive Security
Pentest
Red Team
Toolkit
C3
C3 is a framework for creating custom C2 channels, integrating with existing offensive toolkits.
0
Free
Offensive Security
C2
Command And Control
Offensive Security
+3
Sticky-Keys-Slayer
A tool that scans for accessibility tools backdoors via RDP
0
Free
Offensive Security
Remote Desktop
Rdp
Sticky-Keys-Slayer
A tool that scans for accessibility tools backdoors via RDP
0
Free
Offensive Security
Remote Desktop
Rdp
Brute Ratel C4
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
0
Free
Offensive Security
C2
Command And Control
Red Team
Brute Ratel C4
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
0
Free
Offensive Security
C2
Command And Control
Red Team
Skyhook
Skyhook facilitates obfuscated HTTP file transfers to bypass IDS detections, enhancing secure data exchange.
0
Free
Offensive Security
Appsec
Obfuscation
Skyhook
Skyhook facilitates obfuscated HTTP file transfers to bypass IDS detections, enhancing secure data exchange.
0
Free
Offensive Security
Appsec
Obfuscation
Stratus Red Team
Emulate offensive attack techniques in the cloud with a self-contained Go binary.
0
Free
Offensive Security
Cloud
Red Team
Mitre Attack
Go
Docker
Stratus Red Team
Emulate offensive attack techniques in the cloud with a self-contained Go binary.
0
Free
Offensive Security
Cloud
Red Team
Mitre Attack
+2
Tugarecon
A subdomain enumeration tool for penetration testers and security researchers.
0
Free
Offensive Security
Subdomain Enumeration
Penetration Testing
Security Research
Search Engine
Database
Enumeration
Tugarecon
A subdomain enumeration tool for penetration testers and security researchers.
0
Free
Offensive Security
Subdomain Enumeration
Penetration Testing
Security Research
+3

Offensive Security

RELATED TASKS

PINNED

CTIChef.com Detection Feeds

CTIChef.com Detection Feeds

OSINTLeak

OSINTLeak

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

racepwn

racepwn

Injectus

Injectus

Turbo Intruder Scripts

Turbo Intruder Scripts

Singularity

Singularity

SSTImap

SSTImap

requests-racer

requests-racer

ThreatCheck

ThreatCheck

GadgetToJScript

GadgetToJScript

C3

C3

Sticky-Keys-Slayer

Sticky-Keys-Slayer

Brute Ratel C4

Brute Ratel C4

Skyhook

Skyhook

Stratus Red Team

Stratus Red Team

Tugarecon

Tugarecon