The Ultimate Directory for Offensive Security

Empire

Empire is a post-exploitation framework for red teams and penetration testers, featuring encrypted comms and a modular design.

Internal External C2

AI SecurityApplication SecurityAPI SecurityCloud SecurityVulnerability Intelligence

EnforsterAI

AI-native SAST tool for code security, detecting vulnerabilities, secrets, IaC issues, and AI model security with actionable AI fixes.

AI Static Analysis API Cloud Web+1

Social EngineeringRed Team Operations

Evil QR

Evil QR is a toolkit demonstrating how attackers can take over accounts by convincing users to scan supplied QR codes through phishing.

Phishing

Infrastructure Security

Evil-WinRM

Evil-WinRM is the ultimate WinRM shell for hacking/pentesting, offering features like in-memory script loading and AMSI bypass.

Internal

Wireless SecurityRed Team OperationsPhysical Security

EvilCrowRF-V2

Wireless Physical Bruteforce

Evil Crow RF V2: A radio frequency hacking device for pentesting and red team ops, operating across multiple bands with dual CC1101 modules.

Social EngineeringTraining

Evilginx Mastery

Master advanced phishing techniques with Evilginx, bypass MFA, and learn to create custom phishlets for red team engagements.

Training Phishing

Vulnerability Intelligence

Exploit Database

Exploit Database (Exploit-DB) is a curated repository of public exploits and proof-of-concepts for offensive and defensive security professionals.

Vulnerability Intelligence

Exploit.IN

Exploit.IN delivers the latest news, research, and tools concerning hacking, exploits, vulnerabilities, malware, and cybersecurity laws.

Reconnaissance

FOFA Search Engine

FOFA is a cyberspace search engine that helps researchers and enterprises quickly match network assets through cyberspace mapping.

External

Application SecurityReporting

Faction Security

Automate PenTest reporting and AppSec Posture Management (ASPM) for penetration testers, red teams, and application security teams.

Reporting

Faraday Security

Faraday Security: Cybersecurity tools to optimize network security, reinforce defenses, and protect against attackers with agile vulnerability management.

ReconnaissanceApplication Security

Feroxbuster

Feroxbuster is a fast, simple, recursive content discovery tool written in Rust, designed for forced browsing.

Web Bug Bounty

Join the Community

Subscribe to our newsletter for the latest news and updates

HackDB

The Ultimate Directory for Offensive Security

Product

Search
Category
Tag

Resources

Pricing
Submit

Pages

Home
Sitemap
Support

Company

About Us
Privacy Policy
Terms of Service

All Categories

AI Security

API Security

Application Security

Bug Bounty

Certifications

Cloud Security

Exploit Development

Infrastructure Security

Physical Security

Reconnaissance

Red Team Operations

Reporting

Reverse Engineering

Security Firms

Social Engineering

Training

Vulnerability Intelligence

Wireless Security

Red Team Operations

Empire

Empire is a post-exploitation framework for red teams and penetration testers, featuring encrypted comms and a modular design.

Internal External C2

AI SecurityApplication SecurityAPI SecurityCloud SecurityVulnerability Intelligence

EnforsterAI

AI-native SAST tool for code security, detecting vulnerabilities, secrets, IaC issues, and AI model security with actionable AI fixes.

AI Static Analysis API Cloud Web+1

Social EngineeringRed Team Operations

Evil QR

Evil QR is a toolkit demonstrating how attackers can take over accounts by convincing users to scan supplied QR codes through phishing.

Phishing

Infrastructure Security

Evil-WinRM

Evil-WinRM is the ultimate WinRM shell for hacking/pentesting, offering features like in-memory script loading and AMSI bypass.

Internal

Wireless SecurityRed Team OperationsPhysical Security

EvilCrowRF-V2

Wireless Physical Bruteforce

Evil Crow RF V2: A radio frequency hacking device for pentesting and red team ops, operating across multiple bands with dual CC1101 modules.

Social EngineeringTraining

Evilginx Mastery

Master advanced phishing techniques with Evilginx, bypass MFA, and learn to create custom phishlets for red team engagements.

Training Phishing

Vulnerability Intelligence

Exploit Database

Exploit Database (Exploit-DB) is a curated repository of public exploits and proof-of-concepts for offensive and defensive security professionals.

Exploit.IN

Exploit.IN delivers the latest news, research, and tools concerning hacking, exploits, vulnerabilities, malware, and cybersecurity laws.

Reconnaissance

FOFA Search Engine

FOFA is a cyberspace search engine that helps researchers and enterprises quickly match network assets through cyberspace mapping.

External

Application SecurityReporting

Faction Security

Automate PenTest reporting and AppSec Posture Management (ASPM) for penetration testers, red teams, and application security teams.

Reporting

Faraday Security

Faraday Security: Cybersecurity tools to optimize network security, reinforce defenses, and protect against attackers with agile vulnerability management.

ReconnaissanceApplication Security

Feroxbuster