Submit your favorite resources for free.
Resources focused on external perimeter testing, including internet-facing infrastructure, exposed services, DNS, and attack surface discovery.
CALDERA is an automated adversary emulation system that leverages the MITRE ATT&CK framework to assess security posture and detect gaps.
Censys provides attack surface management and threat hunting solutions powered by comprehensive internet intelligence data.
Evilginx Pro is a phishing framework designed for red teams, enabling advanced phishing attacks with features like session hijacking and credential harvesting.
AI geolocation platform identifying indoor/outdoor photo locations like hotel rooms and street views with verifiable evidence for OSINT and recon.
Metasploit is a penetration testing framework that helps security teams verify vulnerabilities, manage assessments, and improve security awareness.
Vulnetic AI is a high-performance hacking agent built for serious penetration testing at a fraction of typical costs.
AI Red Teaming Playground Labs: Challenges for AI red teaming training, covering adversarial ML and Responsible AI failures.
Aikido is a security platform for code and cloud, designed to automatically find and fix vulnerabilities in one central system.
Argus is a Python toolkit for streamlined information gathering and reconnaissance, offering a wide range of modules for network and web application assessment.
BBOT is a recursive internet scanner for hackers, automating recon, bug bounties, and ASM with a suite of offensive web modules.
Brute Ratel C4 is a customized command and control center designed for red team and adversary simulation, offering advanced evasion techniques.
Brutus by Praetorian is a CI/CD security tool that automates the discovery of vulnerabilities in build pipelines for red teams and security engineers.
