Metasploit Framework Logo

Metasploit Framework

0
Free
Offensive Security
Penetration Testing
Metasploit
Vulnerability Scanning
Security Testing
Penetration Testing Framework
Visit Website

The Metasploit Framework is an open-source penetration testing platform that helps security professionals identify vulnerabilities and weaknesses in computer systems.

FEATURES

ALTERNATIVES

SSTImap Logo
SSTImap

A tool for detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities

Free
Offensive Security
The Absurdly Underestimated Dangers of CSV Injection Logo
The Absurdly Underestimated Dangers of CSV Injection

A blog post discussing the often overlooked dangers of CSV injection in applications.

Free
Offensive Security
o365-attack-toolkit Logo
o365-attack-toolkit

A toolkit to attack Office365, including tools for password spraying, password cracking, token manipulation, and exploiting vulnerabilities in Office365 APIs and services.

Free
Offensive Security
Donut Logo
Donut

Generates shellcode that loads Windows payloads from memory and runs them with parameters.

Free
Offensive Security
A practical guide to RFID badge copying Logo
A practical guide to RFID badge copying

A guide to bypassing RFID card reader security mechanisms using specialized hardware

Free
Offensive Security
Ebowla Logo
Ebowla

Ebowla is a tool for generating payloads in Python, GO, and PowerShell with support for Reflective DLLs.

Free
Offensive Security
Empire Communication Profiles Logo
Empire Communication Profiles

Customize Empire's GET request URIs, user agent, and headers for evading detection and masquerading as other applications.

Free
Offensive Security
Combatting Incident Responders with Apache mod_rewrite Logo
Combatting Incident Responders with Apache mod_rewrite

Using Apache mod_rewrite rules to rewrite incident responder or security appliance requests to an innocuous website or the target's real website.

Free
Offensive Security

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security