Submit your favorite resources for free.
Browse the newest offensive security tools, platforms, and services recently added to HackDB.
Chisel: A fast TCP/UDP tunnel over HTTP, secured via SSH. Useful for firewalls, providing secure network endpoints.
ProxyChains is a tool to force TCP connections through proxies like TOR, supporting SOCKS4/5 and HTTP(S) with user/pass and basic auth.
GTFOBins is a curated list of Unix binaries to bypass local security restrictions in misconfigured systems, aiding pentesters and researchers.
Pillar Security: AI security platform to identify, assess, and mitigate security risks across the entire AI lifecycle.
GraphQLmap is a scripting engine for GraphQL endpoint pentesting, automating queries and fuzzing for vulnerabilities.
SigmaPotato: SeImpersonate privilege escalation tool for Windows 8-11 & Server 2012-2022 with PowerShell & .NET reflection support.
AI Red Teaming Playground Labs: Challenges for AI red teaming training, covering adversarial ML and Responsible AI failures.
BYOB is an open-source post-exploitation framework for students, researchers, and developers to build and manage botnets.
Pupy is a cross-platform post-exploitation framework and RAT, enabling in-memory execution and low-footprint operations across multiple OS.
Maldev Academy offers an in-depth, module-based training platform focused on modern Windows malware development and offensive phishing operations.
Master advanced phishing techniques with Evilginx, bypass MFA, and learn to create custom phishlets for red team engagements.
GreyNoise Visualizer helps security professionals investigate internet noise and uncover real-time vulnerability exploitation trends.
