A database for red teaming, penetration testing, and ethical hacking resources
Subscribe to our newsletter for the latest news and updates
GEF is a kick-ass set of commands for GDB to make it cool again for exploit dev and reverse engineering on X86, ARM, MIPS, PowerPC, and SPARC.
The GPEN certification validates a professional's ability to conduct penetration tests using best-practice techniques and methodologies.
The GWAPT certification validates web application penetration testing skills, covering exploits, security issues, and testing methodologies.
Gandalf is a prompting skills test by Lakera that challenges users to extract secret information from a large language model.
Ghauri is a cross-platform tool for detecting and exploiting SQL injection flaws, automating the process for security professionals.
Ghidra is a powerful open-source reverse engineering tool developed by the NSA, offering a suite of software analysis features including decompilation and disassembly.
SpecterOps Ghostwriter is a project management and reporting platform designed for security professionals to manage clients, projects, and reports.
Gitleaks detects secrets like passwords, API keys, and tokens in git repositories, files, and standard input.
Gobuster is a tool to brute-force URIs, DNS subdomains, and virtual hostnames, aiding in web application reconnaissance.
Gophish is a powerful open-source phishing toolkit designed to help organizations and security professionals conduct realistic phishing simulations.
GraphQL Cop is a Python utility for running security tests against GraphQL APIs, ideal for CI/CD checks and vulnerability reproduction.
Assess the security of your GraphQL apps: authorization, access control, complexity limits, introspection, DDOS, and injections.
