Infrastructure Security encompasses offensive techniques for assessing both internal and external networks, systems, and services. It includes port scanning, service enumeration, lateral movement, Active Directory exploitation, and network pivoting, covering both perimeter assessments and internal network attacks.
Offline security checklist & report generator with 200+ tests across web, cloud, WiFi, firmware, and AI security domains.
SecLists is a collection of multiple types of lists used during security assessments, collected in one place for easy access.
ShipSec Studio is an open-source security workflow orchestration platform designed for building, executing, and monitoring automated security workflows at scale.
A network communication blocker designed to neutralize EDR/AV software using Windows Filtering Platform (WFP).
Snaffler is a pentesting tool to find credentials and sensitive data in Windows/AD environments by enumerating file shares and content.
SpiderFoot automates OSINT for threat intelligence and attack surface mapping, integrating diverse data sources for comprehensive analysis.
THC-Hydra is a fast network login cracker supporting numerous protocols; a valuable tool for security researchers and consultants.
A tool to enumerate privileged Scheduled Tasks on Remote Windows Systems, aiding in identifying potential attack paths.
