Offensive Docker is an image with the most commonly used tools for creating a pentest environment easily and quickly. It includes a variety of tools for port scanning, recon, subdomain takeover, DNS lookups, screenshot, crawling, directory search, fuzzing, web scanning, CMS search, JS analysis, wordlists, Git repository scanning, mobile testing, brute force, cracking, OS enumeration, exploits, Windows reverse shell, forensic analysis, custom functions, reporting tools, and more. It also provides detailed instructions on how to launch it in a VPS on Google Cloud Platform or Digital Ocean.
FEATURES
SIMILAR TOOLS
A digital archive of the internet, allowing users to capture and browse archived web pages.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
Generates randomized C2 profiles for Cobalt Strike to evade detection.
Explore the top million websites, ranked by referring subnets, and gain insights into online influence and popularity.
SauronEye helps in identifying files containing sensitive data such as passwords through targeted directory searches.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
C3 is a framework for creating custom C2 channels, integrating with existing offensive toolkits.
Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.