Browse all offensive security tools, platforms, and services in one place.
Maigret OSINT bot is a Telegram bot that helps you find information about people by their usernames across various online platforms.
Maldev Academy offers an in-depth, module-based training platform focused on modern Windows malware development and offensive phishing operations.
A covert technique encoding executables into pixel data within images/videos, executed in memory, highlighting unconventional data delivery.
Maltego is an investigation platform that accelerates complex cyber investigations, used by security analysts and investigators worldwide.
Masscan is a TCP port scanner capable of scanning the entire Internet in under 5 minutes, transmitting 10 million packets per second.
MeetC2 is a proof-of-concept C2 framework using Google Calendar API as a covert communication channel between operators and a compromised system.
MicroBurst is a PowerShell toolkit for assessing Microsoft Azure security, including discovery, auditing, and post-exploitation actions.
MikuMikuBeam is an open-source network stresser tool with a Miku-themed frontend for configuring and running various network attacks.
Mobile Security Framework (MobSF) is a mobile application security assessment framework for static and dynamic analysis.
ModelScan: scans ML models for unsafe code, supporting H5, Pickle, and SavedModel formats, protecting against serialization attacks.
Modlishka is a MITM proxy to bypass 2FA, enabling transparent multi-domain TLS traffic over a single domain without client certificates.
Moxy is an open-source DAST tool with agentic AI for modern web application security testing and automated pentesting workflows.
