The Ultimate Directory for Offensive Security

Responder

Responder is a LLMNR, NBT-NS and MDNS poisoner with built-in rogue authentication servers for capturing credentials and performing relay attacks.

Internal

Application Security

Retire.js

Retire.js: Scans web/Node.js apps for vulnerable JS libraries & generates SBOMs, aiding in identifying & mitigating security risks.

Web Static Analysis

Infrastructure Security

Rubeus

Rubeus is a C# toolset for raw Kerberos interaction and abuses, heavily adapted from Kekeo and MakeMeEnterpriseAdmin projects.

Bruteforce Internal

ReconnaissanceInfrastructure Security

RustScan

RustScan: lightning-fast port scanner automating Nmap integration with adaptive learning for efficient network reconnaissance and security audits.

External

Cloud SecurityReconnaissanceInfrastructure Security

S3Scanner

S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.

Bug Bounty Web Cloud

Physical Security

SPARROWS Lock Picks

Sparrows Lock Picks offers quality lock picks, covert entry tools, beginner sets, practice locks, and tutorials for lock picking success.

API Security

Schemathesis

Schemathesis is a tool that automatically generates API tests from OpenAPI and GraphQL schemas to find bugs.

API Static Analysis

Cloud Security

ScoutSuite

ScoutSuite: Multi-cloud security auditing tool for AWS, Azure, and GCP. Gathers configuration data and highlights risk areas.

Cloud

Application SecurityCloud SecurityInfrastructure SecurityRed Team Operations

SecLists

Bug Bounty Web External Internal

SecLists is a collection of multiple types of lists used during security assessments, collected in one place for easy access.

Reporting

Security Reporter

Security Reporter is the all-in-one pentest reporting workspace designed to optimize the entire cybersecurity assessment workflow, from testing to reporting.

Report API

Bug BountyReconnaissance

SecurityTrails

SecurityTrails is a threat intelligence platform that provides comprehensive data on internet assets, aiding organizations in monitoring and securing their digital footprint.

Bug Bounty OSINT

Physical Security

Seek Thermal

Seek Thermal offers thermal imaging tools ideal for physical pentesters and red teamers to assess building security and detect hidden activity.

Join the Community

Subscribe to our newsletter for the latest news and updates

HackDB

The Ultimate Directory for Offensive Security

Product

Search
Category
Tag

Resources

Pricing
Submit

Pages

Home
Sitemap
Support

Company2

About Us
Privacy Policy
Terms of Service

All Categories

AI Security

API Security

Application Security

Bug Bounty

Certifications

Cloud Security

Exploit Development

Infrastructure Security

Physical Security

Reconnaissance

Red Team Operations

Reporting

Reverse Engineering

Security Firms

Social Engineering

Training

Vulnerability Intelligence

Wireless Security

Infrastructure SecurityReconnaissance

Responder

Responder is a LLMNR, NBT-NS and MDNS poisoner with built-in rogue authentication servers for capturing credentials and performing relay attacks.

Internal

Application Security

Retire.js

Retire.js: Scans web/Node.js apps for vulnerable JS libraries & generates SBOMs, aiding in identifying & mitigating security risks.

Web Static Analysis

Infrastructure Security

Rubeus

Rubeus is a C# toolset for raw Kerberos interaction and abuses, heavily adapted from Kekeo and MakeMeEnterpriseAdmin projects.

Bruteforce Internal

ReconnaissanceInfrastructure Security

RustScan

RustScan: lightning-fast port scanner automating Nmap integration with adaptive learning for efficient network reconnaissance and security audits.

External

Cloud SecurityReconnaissanceInfrastructure Security

S3Scanner

S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.

Bug Bounty Web Cloud

Physical Security

SPARROWS Lock Picks

Sparrows Lock Picks offers quality lock picks, covert entry tools, beginner sets, practice locks, and tutorials for lock picking success.

API Security

Schemathesis

Schemathesis is a tool that automatically generates API tests from OpenAPI and GraphQL schemas to find bugs.

API Static Analysis

Cloud Security

ScoutSuite

ScoutSuite: Multi-cloud security auditing tool for AWS, Azure, and GCP. Gathers configuration data and highlights risk areas.

Cloud

Application SecurityCloud SecurityInfrastructure SecurityRed Team Operations

SecLists

Bug Bounty Web External Internal

SecLists is a collection of multiple types of lists used during security assessments, collected in one place for easy access.

Reporting

Security Reporter

Security Reporter is the all-in-one pentest reporting workspace designed to optimize the entire cybersecurity assessment workflow, from testing to reporting.

Report API

Bug BountyReconnaissance

SecurityTrails

SecurityTrails is a threat intelligence platform that provides comprehensive data on internet assets, aiding organizations in monitoring and securing their digital footprint.

Bug Bounty OSINT

Physical Security

Seek Thermal

Seek Thermal offers thermal imaging tools ideal for physical pentesters and red teamers to assess building security and detect hidden activity.