Submit your favorite resources for free.

Submit
LogoHackDB

Search

Search the directory

Find red teaming, penetration testing, and ethical hacking resources in seconds.

image of API testing
API Security
Visit Website

API testing

Details

Learn API testing techniques, including API recon, documentation analysis, endpoint identification, and prevention of common API vulnerabilities.

APITraining
image of APIsec University
API SecurityTrainingCertifications
Visit Website

APIsec University

Details

APIsec University offers free API security training courses to help you find API vulnerabilities and keep your APIs secure.

TrainingAPICertifications
image of APKHunt
Application Security
Visit Website

APKHunt

Details

APKHunt is a static code analysis tool for Android apps based on OWASP MASVS, helping developers and security testers find vulnerabilities.

Static AnalysisMobile
image of Access Tools
Physical Security
Visit Website

Access Tools

Details

Access Tools provides professional automotive lockout kits and entry tools essential for physical penetration testing and specialized red team operations.

Physical
image of AdaptixC2
Red Team Operations
Visit Website

AdaptixC2

Details

Adaptix is an extensible post-exploitation framework with a cross-platform GUI client, encrypted comms, and plugin-based extenders.

C2
image of Aikido
Cloud SecurityApplication SecurityAPI SecurityVulnerability IntelligenceReportingAI Security
Visit Website

Aikido

Details

Aikido is a security platform for code and cloud, designed to automatically find and fix vulnerabilities in one central system.

CloudAPIAIReportWeb+5
image of Aircrack-ng
Wireless Security
Visit Website

Aircrack-ng

Details

Aircrack-ng is a complete suite of tools to assess WiFi network security, focusing on monitoring, attacking, testing, and cracking.

Wireless
image of Airgeddon
Wireless Security
Visit Website

Airgeddon

Details

Airgeddon is a multi-use bash script for auditing wireless networks, offering various attack and testing methods for Linux systems.

Wireless
image of AllForOne
Bug BountyReconnaissance
Visit Website

AllForOne

Details

Collect Nuclei YAML templates from public repositories for streamlined bug bounty hunting and security research.

Bug Bounty
image of Altair GraphQL Client
API Security
Visit Website

Altair GraphQL Client

Details

Altair GraphQL Client is a feature-rich IDE for debugging GraphQL queries and implementations across all platforms, simplifying development workflows.

API
image of Anvil
Application Security
Visit Website

Anvil

Details

Runtime-first Windows thick client assessment tool. Identifies verified privilege escalation paths using Procmon and AccessCheck validation.

Static Analysis
image of Argus
Reconnaissance
Visit Website

Argus

Details

Argus is a Python toolkit for streamlined information gathering and reconnaissance, offering a wide range of modules for network and web application assessment.

OSINTExternal