cariddi
Take a list of domains, crawl URLs and scan for endpoints, secrets, API keys, file extensions, tokens and more. A tool for security researchers and penetration testers to automate the process of finding sensitive information on a target domain.
FEATURES
ALTERNATIVES
A C/C++ tool for remote process injection, supporting x64 and x86 operations, with system call macros generated by SysWhispers script.
Using Apache mod_rewrite rules to rewrite incident responder or security appliance requests to an innocuous website or the target's real website.
Sublist3r is a python tool for enumerating subdomains using OSINT and various search engines.
A lightweight, first-stage C2 implant written in Nim for remote access and control.
A comprehensive guide for customizing Cobalt Strike's C2 profiles to enhance stealth and operational security.
The Proxmark III is a versatile device for sniffing, reading, and cloning RFID tags with strong community support.
A proxy aware C2 framework for penetration testing, red teaming, post-exploitation, and lateral movement with modular format and highly configurable payloads.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.