Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting. It helps in identifying potential vulnerabilities and weaknesses in a domain's infrastructure. Sudomy is a powerful tool for security researchers, bug hunters, and penetration testers to identify potential entry points for exploitation.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
C3 is a framework for creating custom C2 channels, integrating with existing offensive toolkits.
A command that builds and executes command lines from standard input, allowing for the execution of commands with multiple arguments.
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.
SharpEDRChecker scans system components to detect security products and tools.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.