Submit your favorite resources for free.
Reporting templates, vulnerability write-up examples, executive summaries, and documentation best practices for professional pentest deliverable reports.
Akto is an API security platform providing API discovery, security posture assessment, and testing throughout the DevSecOps pipeline.
BloodHound CE maps attack paths in Active Directory, Entra ID, and Azure, using graph theory to reveal hidden relationships and vulnerabilities.
Evilginx Pro is a phishing framework designed for red teams, enabling advanced phishing attacks with features like session hijacking and credential harvesting.
AI geolocation platform identifying indoor/outdoor photo locations like hotel rooms and street views with verifiable evidence for OSINT and recon.
The NVD is the U.S. government repository of standards-based vulnerability management data, enabling red teams to analyze CVEs and assess security risks.
1ty.me offers secure, one-time self-destructing links for sharing sensitive information, ensuring data privacy and preventing unauthorized access.
Aikido is a security platform for code and cloud, designed to automatically find and fix vulnerabilities in one central system.
Astra Security is an AI-powered pentest platform offering continuous vulnerability scanning and management for web apps, APIs, and cloud.
AttackForge is a pentest management and reporting platform that streamlines penetration testing workflows and enhances collaboration across security projects.
The CIS Controls are a prioritized set of actions to help organizations improve their cybersecurity posture and protect against common threats.
A comprehensive community-developed list of common software and hardware weaknesses to help identify and mitigate security issues.
CloudQuery provides a developer-first cloud governance platform for security, compliance, and cost visibility across multi-cloud environments.
