Submit your favorite resources for free.
Browse all offensive security tools, platforms, and services in one place.
DefectDojo automates application security vulnerability management, unifying security tools and streamlining DevSecOps workflows.
Dradis CE is an open-source reporting and collaboration tool for InfoSec professionals to streamline security project reporting for free.
Dradis Pro streamlines pentesting with collaboration, automation, and consistent reporting, trusted by security teams worldwide.
DragonOS is an out-of-the-box operating system tailored for software-defined radios (SDRs), available for Raspberry Pi and x86-64 architectures.
AI-powered security agents that detect logic flaws, authorization gaps, and IDOR, preventing code risks in modern applications.
EAPHammer: Evil twin attacks against WPA2-Enterprise networks with hostile portal attacks and indirect wireless pivots.
EAP_buster lists supported EAP methods of a RADIUS server, aiding red teams and detecting rogue WPA-Enterprise access points.
EC-Council offers cybersecurity courses online, providing industry-recognized certifications and training for career advancement.
Empire is a post-exploitation framework for red teams and penetration testers, featuring encrypted comms and a modular design.
AI-native SAST tool for code security, detecting vulnerabilities, secrets, IaC issues, and AI model security with actionable AI fixes.
Evil QR is a toolkit demonstrating how attackers can take over accounts by convincing users to scan supplied QR codes through phishing.
Evil-WinRM is the ultimate WinRM shell for hacking/pentesting, offering features like in-memory script loading and AMSI bypass.
