Category

A Postman recon/OSINT framework for automated API endpoint discovery and secret exploitation in workspaces, collections, requests, users, and teams.

ProjectDiscovery offers real-time vulnerability detection, asset discovery, and customizable exploit detection for streamlined security workflows.

ROADtools is a framework for Azure AD security, offering tools for offensive and defensive purposes, including ROADrecon and roadtx.

Responder is a LLMNR, NBT-NS and MDNS poisoner with built-in rogue authentication servers for capturing credentials and performing relay attacks.

RustScan: lightning-fast port scanner automating Nmap integration with adaptive learning for efficient network reconnaissance and security audits.

S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.

SecurityTrails is a threat intelligence platform that provides comprehensive data on internet assets, aiding organizations in monitoring and securing their digital footprint.​

Sherlock is an OSINT tool for finding usernames across social networks to support digital investigations and reconnaissance.

ShipSec Studio is an open-source security workflow orchestration platform designed for building, executing, and monitoring automated security workflows at scale.

Shodan is a search engine for Internet-connected devices, enabling users to discover and monitor exposed services and gain Internet intelligence.

Sn1per is an Attack Surface Management (ASM) platform designed to automate vulnerability scanning and information gathering.

Snaffler is a pentesting tool to find credentials and sensitive data in Windows/AD environments by enumerating file shares and content.