Submit your favorite resources for free.
Browse the newest offensive security tools, platforms, and services recently added to HackDB.
Industry-leading penetration testing course with Kali Linux, offering hands-on experience and OSCP+ certification upon exam success.
The CREST Registered Penetration Tester (CRT) exam validates skills in assessing networks, systems, and web applications.
The eCPPT certification validates practical penetration testing skills, covering reconnaissance, web app testing, exploit development, and Active Directory.
The HTB Certified Bug Bounty Hunter certification validates skills in identifying and exploiting web application vulnerabilities.
Learn red teaming principles, tools, and techniques, from initial compromise to domain takeover, with OPSEC and defense bypass.
AzureHound is a BloodHound data collector for Microsoft Azure, enabling security professionals to map attack paths in Azure environments.
ROADtools is a framework for Azure AD security, offering tools for offensive and defensive purposes, including ROADrecon and roadtx.
CloudFox helps penetration testers find exploitable attack paths in cloud infrastructure, currently supporting AWS with more on the way.
Steampipe: Query your cloud, code, logs & more with SQL. Build benchmarks & dashboards for security & insights. Zero-ETL from 140+ sources.
CloudQuery provides a developer-first cloud governance platform for security, compliance, and cost visibility across multi-cloud environments.
Prowler is an open-source cloud security tool empowering cloud engineers with customizable security checks across AWS, Azure, GCP, and Kubernetes.
S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.
