Submit your favorite resources for free.
Find red teaming, penetration testing, and ethical hacking resources in seconds.
reconFTW automates reconnaissance, subdomain enumeration, and vulnerability checks, providing comprehensive target information.
shcheck is a tool to check security headers of a website, reporting which are enabled and which are not.
sqlmap is an automatic SQL injection and database takeover tool for penetration testing and vulnerability detection.
A lightweight GPT model trained to discover subdomains, aiding in reconnaissance and bug bounty hunting.
theHarvester is an OSINT tool for gathering emails, subdomains, IPs, and URLs to determine a domain's external threat landscape.
A tool to de-clutter lists of URLs by removing redundant parameters, extensions, and unwanted content, enhancing reconnaissance.
A specialized WPA3 dictionary cracker that leverages the wpa_supplicant control interface for high-speed online brute-force attacks against SAE networks.
Finds more links from Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X, and downloads archived responses.
PEASS-ng/winPEAS is a suite of scripts designed to identify potential privilege escalation paths on Windows systems.
A python tool to discover endpoints, potential parameters, and target-specific wordlists by crawling or analyzing various input sources.
A command-line tool to gather dork results from various search engines, aiding in reconnaissance and vulnerability discovery.
C# obfuscator designed to bypass Windows Defender, offering a practical solution for protecting .NET applications.
