Category

RustScan: lightning-fast port scanner automating Nmap integration with adaptive learning for efficient network reconnaissance and security audits.

S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.

Offline security checklist & report generator with 200+ tests across web, cloud, WiFi, firmware, and AI security domains.

SecLists is a collection of multiple types of lists used during security assessments, collected in one place for easy access.

C# tool for hijacking Windows user sessions via the IHxHelpPaneServer COM object, enabling operators to run arbitrary files in another user's session.

SharpHound is the data collector for BloodHound, used to map and analyze Active Directory environments for privilege escalation and attack paths.

ShipSec Studio is an open-source security platform for red teams to build visual workflows for tool orchestration, recon, and vulnerability scanning.

SigmaPotato: SeImpersonate privilege escalation tool for Windows 8-11 & Server 2012-2022 with PowerShell & .NET reflection support.

A network communication blocker designed to neutralize EDR/AV software using Windows Filtering Platform (WFP).

Snaffler is a pentesting tool to find credentials and sensitive data in Windows/AD environments by enumerating file shares and content.

SpiderFoot automates OSINT for threat intelligence and attack surface mapping, integrating diverse data sources for comprehensive analysis.

Steampipe: Query your cloud, code, logs & more with SQL. Build benchmarks & dashboards for security & insights. Zero-ETL from 140+ sources.