Submit your favorite resources for free.
Find red teaming, penetration testing, and ethical hacking resources in seconds.
Gitleaks detects secrets like passwords, API keys, and tokens in git repositories, files, and standard input.
Gobuster is a tool to brute-force URIs, DNS subdomains, and virtual hostnames, aiding in web application reconnaissance.
GodPotato is a privilege escalation tool for Windows, exploiting DCOM to elevate privileges to NT AUTHORITY\SYSTEM with ImpersonatePrivilege.
Gophish is a powerful open-source phishing toolkit designed to help organizations and security professionals conduct realistic phishing simulations.
GraphQL Cop is a Python utility for running security tests against GraphQL APIs, ideal for CI/CD checks and vulnerability reproduction.
Assess the security of your GraphQL apps: authorization, access control, complexity limits, introspection, DDOS, and injections.
GraphQL Voyager: Visualize any GraphQL API as an interactive graph, aiding in understanding and exploration of its schema and relationships.
GraphQLmap is a scripting engine for GraphQL endpoint pentesting, automating queries and fuzzing for vulnerabilities.
Grep is a code search tool by Vercel that allows users to search code, files, and paths across a million public GitHub repositories.
GreyNoise Visualizer helps security professionals investigate internet noise and uncover real-time vulnerability exploitation trends.
Horizon3.ai provides autonomous pentesting via NodeZero, allowing red teams to find exploitable attack paths and verify security fixes in real-time.
The HTB Certified Bug Bounty Hunter certification validates skills in identifying and exploiting web application vulnerabilities.
