Submit your favorite resources for free.
Resources focused on external perimeter testing, including internet-facing infrastructure, exposed services, DNS, and attack surface discovery.
Ciphey is an automated decryption, decoding, and cracking tool that uses NLP and AI to decipher encryptions without knowing the key or cipher.
Cobalt provides offensive security services with a SaaS platform, offering pentesting and vulnerability management for modern security needs.
Cobalt Strike: adversary simulation tool emulating advanced threat actors in IT networks using Beacon, a post-exploitation agent.
DNSDumpster is a free domain research tool for discovering hosts, DNS records, and attack surfaces related to a domain.
DeHashed is a powerful search engine for compromised credentials and breach data used in threat intelligence and reconnaissance.
EC-Council offers cybersecurity courses online, providing industry-recognized certifications and training for career advancement.
Empire is a post-exploitation framework for red teams and penetration testers, featuring encrypted comms and a modular design.
FOFA is a cyberspace search engine that helps researchers and enterprises quickly match network assets through cyberspace mapping.
GEF is a kick-ass set of commands for GDB to make it cool again for exploit dev and reverse engineering on X86, ARM, MIPS, PowerPC, and SPARC.
Gobuster is a tool to brute-force URIs, DNS subdomains, and virtual hostnames, aiding in web application reconnaissance.
Horizon3.ai provides autonomous pentesting via NodeZero, allowing red teams to find exploitable attack paths and verify security fixes in real-time.
Have I Been Pwned allows you to search across multiple data breaches to see if your email address or phone number has been compromised.
