Category

TCPCopy is a powerful stream replay tool used by red teams to clone live TCP traffic for testing firewall bypasses and network security defenses.

Tenable's exposure management platform helps organizations find, prioritize, and fix cyber risks across IT, cloud, OT, and identity environments.

Agentic AI-powered continuous penetration testing as a service (PTaaS) platform that combines AI scale with human supervision.

OWASP Threat Dragon is a free, open-source threat modeling tool for creating threat model diagrams and listing threats.

Titus is a high-performance secrets scanner that detects and validates leaked credentials in code, binaries, and HTTP traffic for offensive engagements.

Truffle Security provides open-source and enterprise solutions for detecting and remediating leaked keys and credentials across the SDLC.

WAFW00F identifies and fingerprints Web Application Firewall (WAF) products protecting a website using various detection methods.

WPScan is a vulnerability database and security scanner for WordPress, helping users identify and address security risks in their WP sites.

Webhook.site allows red teams to capture and inspect HTTP requests in real-time. It is essential for testing blind OOB vulnerabilities and exfiltration.

AI-powered penetration testing platform that scales offensive security, discovers vulnerabilities, and validates exploits with AI agents.

XSStrike is an advanced XSS detection suite with intelligent payload generation, fuzzing engine, and fast crawler for web security.

Xygeni is an AI-powered ASPM platform that secures the software supply chain by detecting malware, secrets, and vulnerabilities across CI/CD pipelines.