Infrastructure Security

BloodHound Community Edition

BloodHound CE maps attack paths in Active Directory, Entra ID, and Azure, using graph theory to reveal hidden relationships and vulnerabilities.

Report Internal

Infrastructure Security

Visit Website

Metasploit

Details

Metasploit is a penetration testing framework that helps security teams verify vulnerabilities, manage assessments, and improve security awareness.

Web External Services

Cloud SecurityInfrastructure SecurityReconnaissance

Visit Website

AzureHound

Details

AzureHound is a BloodHound data collector for Microsoft Azure, enabling security professionals to map attack paths in Azure environments.

Cloud

Infrastructure SecurityRed Team OperationsReporting

Visit Website

Canarytokens

Details

Canarytokens is a free tool to plant traps in your network that notify you when triggered, helping you detect breaches early.

Phishing

Cloud SecurityInfrastructure Security

Visit Website

CloudFox

Details

CloudFox helps penetration testers find exploitable attack paths in cloud infrastructure, currently supporting AWS with more on the way.

Cloud

Cloud SecurityInfrastructure Security

Visit Website

CloudQuery

Details

CloudQuery provides a developer-first cloud governance platform for security, compliance, and cost visibility across multi-cloud environments.

Report Cloud

Infrastructure Security

Visit Website

CrackMapExec

Details

CrackMapExec is a swiss army knife for pentesting Windows networks, automating common tasks for assessing security vulnerabilities.

Internal

Infrastructure Security

Visit Website

Evil-WinRM

Details

Evil-WinRM is the ultimate WinRM shell for hacking/pentesting, offering features like in-memory script loading and AMSI bypass.

Internal

Application SecurityReconnaissanceInfrastructure Security

Visit Website

Gobuster

Details

Gobuster is a tool to brute-force URIs, DNS subdomains, and virtual hostnames, aiding in web application reconnaissance.

Web External Bug Bounty Classification

Infrastructure Security

Visit Website

John the Ripper jumbo

Details

John the Ripper jumbo is an advanced password cracker supporting hundreds of hash types and running on various platforms.

Wireless Web Internal External Bruteforce

Infrastructure SecurityReverse EngineeringExploit DevelopmentWireless SecurityRed Team Operations

Visit Website

Kali Linux

Details

Kali Linux is a Debian-based distribution for penetration testing, ethical hacking, and network security assessments, offering a vast array of tools.

Wireless Mobile External Internal

Red Team OperationsInfrastructure Security

Visit Website

Ligolo-ng

Details

Ligolo-ng: Advanced tunneling tool using TUN interfaces for pentesters, enabling network access without SOCKS proxies.

Internal

Category

Explore by categories

All

AI Security

API Security

Application Security

Bug Bounty

Certifications

Cloud Security

Exploit Development