Offensive Security
Ethical hacking tools and resources for penetration testing and red team operations.
Explore 274 curated tools and resources
RELATED TASKS
LATEST ADDITIONS
A tool for mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
Self-hosted Fuzzing-As-A-Service platform for continuous developer-driven fuzzing.
A tool for enumerating and attacking GitHub Actions pipelines
Open-source Java application for creating proxies for traffic analysis & modification.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
A specification/framework for extending default C2 communication channels in Cobalt Strike
Introduction to using GScript for Red Teams
A simple, fast web crawler for discovering endpoints and assets in a web application
Redboto is a collection of scripts for red team operations against the AWS API.
Docker image with essential tools for Kubernetes penetration testing.
Local pentest lab using docker compose to spin up victim and attacker services.
Collection of Return-Oriented Programming challenges for practicing exploitation skills.
Stealing Signatures and Making One Invalid Signature at a Time.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.