A database for red teaming, penetration testing, and ethical hacking resources
Subscribe to our newsletter for the latest news and updates
Wappalyzer is a web technology profiler that reveals the software stack behind websites for reconnaissance and competitive analysis.
The Wayback Machine archives billions of web pages, allowing users to view historical snapshots and track changes over time.
Web-Check is a powerful open-source OSINT tool for analyzing website configurations, security headers, DNS, and more.
WiGLE is a wireless network mapping platform that aggregates data on Wi-Fi and cellular networks from user submissions and wardriving efforts.
Wifite2 is a Python script for auditing wireless networks, automating various attacks to retrieve network passwords.
WuppieFuzz: coverage-guided REST API fuzzer using LibAFL, easy-to-use, explainable flaws, modular, supports black/grey/white box testing.
XSStrike is an advanced XSS detection suite with intelligent payload generation, fuzzing engine, and fast crawler for web security.
Zero Day Initiative publishes advisories on vulnerabilities discovered by their researchers, providing details and links to vendor fixes.
ZigStrike is a shellcode loader with injection techniques and anti-sandbox features, using compile-time capabilities for shellcode allocation.
ZoomEye is a cyberspace search engine for discovering and analyzing internet-connected devices, offering tools for asset discovery and vulnerability analysis.
angr is a platform-agnostic binary analysis framework for reverse engineering and vulnerability research.
bettercap is a powerful, modular framework for network reconnaissance and MITM attacks over WiFi, Bluetooth LE, and Ethernet networks.