Submit your favorite resources for free.
Browse the newest offensive security tools, platforms, and services recently added to HackDB.
Steampipe: Query your cloud, code, logs & more with SQL. Build benchmarks & dashboards for security & insights. Zero-ETL from 140+ sources.
CloudQuery provides a developer-first cloud governance platform for security, compliance, and cost visibility across multi-cloud environments.
Prowler is an open-source cloud security tool empowering cloud engineers with customizable security checks across AWS, Azure, GCP, and Kubernetes.
S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.
MicroBurst is a PowerShell toolkit for assessing Microsoft Azure security, including discovery, auditing, and post-exploitation actions.
ScoutSuite: Multi-cloud security auditing tool for AWS, Azure, and GCP. Gathers configuration data and highlights risk areas.
CloudSploit by Aqua scans cloud infrastructure for security risks, supporting AWS, Azure, GCP, OCI, and GitHub.
Pacu is an AWS exploitation framework for offensive security testing of Amazon Web Services environments.
Frida is a dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers to analyze and modify application behavior.
objection is a runtime mobile exploration toolkit for assessing mobile app security posture without needing a jailbreak.
Holehe is an OSINT tool to discover accounts linked to an email across 120+ sites using password recovery & registration methods.
Donut generates position-independent shellcode to load .NET Assemblies, PE files, VBScript, and other Windows payloads from memory.