The Ultimate Directory for Offensive Security

Impacket

Impacket is a collection of Python classes for working with network protocols, providing low-level access to packets and protocol implementation.

API Security

InQL

InQL is a Burp Suite extension for advanced GraphQL testing, offering vulnerability detection and customizable scans.

API

Reconnaissance

Intelligence X

Intelligence X is a search engine and data archive for searching Tor, I2P, data leaks, and the public web by email, domain, IP, and more.

Web External

Application Security

Interactsh

Interactsh is a tool and service for capturing and handling out-of-band interactions during security testing.

Internal Web API

Bug Bounty

Intigriti

Intigriti: crowdsourced security platform offering bug bounty, VDP, and pentesting services, connecting businesses with ethical hackers.

Bug Bounty

Application SecurityAPI Security

JWT Debugger

JWT Debugger is a web application to create, encode, decode, and debug JWT (JSON Web Tokens).

Web API Static Analysis

Infrastructure Security

John the Ripper jumbo

Wireless Web Internal External Bruteforce

John the Ripper jumbo is an advanced password cracker supporting hundreds of hash types and running on various platforms.

Infrastructure SecurityReverse EngineeringExploit DevelopmentWireless SecurityRed Team Operations

Kali Linux

Wireless Mobile External Internal

Kali Linux is a Debian-based distribution for penetration testing, ethical hacking, and network security assessments, offering a vast array of tools.

Infrastructure Security

Kerbrute

Kerbrute is a tool for bruteforcing and enumerating valid Active Directory accounts via Kerberos pre-authentication.

API SecurityReconnaissance

Kiterunner

Kiterunner is a contextual content discovery tool for modern web applications and APIs, excelling in route/endpoint bruteforcing.

API Bruteforce Web

TrainingSocial Engineering

KnowBe4 HRM+

Training Services Phishing

KnowBe4 HRM+ is a human risk management platform with security awareness training, cloud email protection, and AI-driven defense agents.

image of Known Exploited Vulnerabilities

Vulnerability Intelligence

Known Exploited Vulnerabilities

Vulnerability Intelligence

CISA's Known Exploited Vulnerabilities (KEV) Catalog is an authoritative resource listing vulnerabilities actively exploited in the wild, aiding organizations in prioritizing remediation efforts.

Join the Community

Subscribe to our newsletter for the latest news and updates

HackDB

The Ultimate Directory for Offensive Security

Product

Search
Category
Tag

Resources

Pricing
Submit

Pages

Home
Sitemap
Support

Company

About Us
Privacy Policy
Terms of Service

All Categories

AI Security

API Security

Application Security

Bug Bounty

Certifications

Cloud Security

Exploit Development

Infrastructure Security

Physical Security

Reconnaissance

Red Team Operations

Reporting

Reverse Engineering

Security Firms

Social Engineering

Training

Vulnerability Intelligence

Wireless Security

Infrastructure Security

Impacket

Impacket is a collection of Python classes for working with network protocols, providing low-level access to packets and protocol implementation.

API Security

InQL

InQL is a Burp Suite extension for advanced GraphQL testing, offering vulnerability detection and customizable scans.

API

Reconnaissance

Intelligence X

Intelligence X is a search engine and data archive for searching Tor, I2P, data leaks, and the public web by email, domain, IP, and more.

Web External

Application Security

Interactsh

Interactsh is a tool and service for capturing and handling out-of-band interactions during security testing.

Internal Web API

Bug Bounty

Intigriti

Intigriti: crowdsourced security platform offering bug bounty, VDP, and pentesting services, connecting businesses with ethical hackers.

Bug Bounty

Application SecurityAPI Security

JWT Debugger

JWT Debugger is a web application to create, encode, decode, and debug JWT (JSON Web Tokens).

Web API Static Analysis

Infrastructure Security

John the Ripper jumbo

Wireless Web Internal External Bruteforce

John the Ripper jumbo is an advanced password cracker supporting hundreds of hash types and running on various platforms.

Infrastructure SecurityReverse EngineeringExploit DevelopmentWireless SecurityRed Team Operations

Kali Linux

Wireless Mobile External Internal

Kali Linux is a Debian-based distribution for penetration testing, ethical hacking, and network security assessments, offering a vast array of tools.

Infrastructure Security

Kerbrute

Kerbrute is a tool for bruteforcing and enumerating valid Active Directory accounts via Kerberos pre-authentication.

API SecurityReconnaissance

Kiterunner

Kiterunner is a contextual content discovery tool for modern web applications and APIs, excelling in route/endpoint bruteforcing.

API Bruteforce Web

TrainingSocial Engineering

KnowBe4 HRM+

Training Services Phishing

KnowBe4 HRM+ is a human risk management platform with security awareness training, cloud email protection, and AI-driven defense agents.

Vulnerability Intelligence

Known Exploited Vulnerabilities