The Ultimate Directory for Offensive Security

Akto is an API security platform providing API discovery, security posture assessment, and testing throughout the DevSecOps pipeline.

BloodHound CE maps attack paths in Active Directory, Entra ID, and Azure, using graph theory to reveal hidden relationships and vulnerabilities.

CALDERA is an automated adversary emulation system that leverages the MITRE ATT&CK framework to assess security posture and detect gaps.

Censys provides attack surface management and threat hunting solutions powered by comprehensive internet intelligence data.

Evilginx Pro is a phishing framework designed for red teams, enabling advanced phishing attacks with features like session hijacking and credential harvesting.

Guided Hacking is the #1 source for learning game hacking since 2011. Guided Hacking is devoted to producing high quality educational content related to game hacking & reverse engineering.

AI-powered cybersecurity automation platform with 150+ tools and autonomous AI agents for pentesting, vulnerability discovery, and bug bounty automation.

Metasploit is a penetration testing framework that helps security teams verify vulnerabilities, manage assessments, and improve security awareness.

The National Vulnerability Database (NVD) is the U.S. government’s central repository for standardized vulnerability information. Maintained by NIST, it's a vital tool for cybersecurity risk analysis and threat management.

OWASP Foundation: Open source application security, providing resources, tools, and community for secure software development.

OffSec delivers cyber workforce resilience through skills development, hands-on learning platform, and a comprehensive library.

PortSwigger offers web application security tools, testing resources, and training to identify the latest vulnerabilities.