Tools
web-scraper
Tool to scrape websites
assetfinder
Find domains and subdomains potentially related to a given domain
ssh-audit
SSH server and client security auditing tool that analyzes configurations, algorithms, and security vulnerabilities
google-dorks
Tool to search for defined entities in documents
ransomware-victims
Tool to get the latest ransomware victims
ttp-mapper
AI-powered TTP analysis tool for mapping tools to MITRE ATT&CK techniques with strategic analysis
tls-scan
Fast TLS/SSL configuration scanner with cipher and protocol enumeration capabilities
androguard
Comprehensive Android APK reverse engineering tool. Operations: apkid (package metadata), arsc (resource analysis), axml (manifest/XML parsing), cg (call graph generation), sign (certificate inspection).
roadtools-vpn
ROADtools framework for Azure AD reconnaissance, including authentication, data gathering, and timeline analysis capabilities
sherlock
Discover social media accounts by username across social networks
subjack
A tool to check for subdomain takeover vulnerabilities
nmap-scripts
A network exploration and security auditing tool
js-fetch-analyze
Asynchronous JavaScript fetcher and analyzer with automatic source map detection, secret scanning, and hash-based deduplication
whois
Domain name and IP address WHOIS lookup tool
logsensor
A tool to discover login panels and perform POST Form SQLi scanning
scribd-search
Tool to search for documents on scribd
gobuster-dns
DNS subdomain enumeration mode for Gobuster - discovers valid subdomains for a target domain
incident-parser
AI Agent to parse and extract incident data from publication files
cmseek
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
sslyze
Fast and powerful SSL/TLS scanning tool for analyzing server configurations and detecting vulnerabilities
ail-typo-squatting
Generate list of potential typo squatting domains with domain name permutation engine
subfinder
A subdomain discovery tool that discovers valid subdomains for root domains
fingerprintx
This tool detects the protocol of a given port
rss-reader
Fetch, filter, and convert RSS & Atom feeds to JSON, JSONL, CSV, or XML formats
nuclei
A fast and multi-purpose template based vulnerability scanner
feroxbuster
A fast, simple, recursive content discovery tool written in Rust
ffuf
Fast web fuzzer written in Go - directory discovery, virtual host discovery, parameter fuzzing, and more
tlsx
A fast and configurable TLS grabber focused on TLS based data collection and analysis. Useful for certificate retrieval
ct-exposer
Tool to query Certificate Transparency logs for domain information
nmap
A network exploration and security auditing tool
dnsdumpster
DNS recon tool that can discover host's subdomains, and emails related to the host, MX, and A records
katana
A web crawling tool capable of finding endpoint paths and parameters
amass
OWASP Amass for subdomain enumeration and asset discovery with comprehensive data source integration
file-magic
File type identification tool using libmagic. Analyzes files and returns type information along with SHA256 hash
s3scanner
A tool to find open S3 buckets and enumerate their contents across multiple cloud providers
cve2capec
Query pre-built CVE2CAPEC database to map CVEs to CWE, CAPEC, MITRE ATT&CK, and D3FEND techniques. Fast lookups from daily-updated threat intelligence database.
capa
Malware capability detection tool by Mandiant/Google FLARE team. Identifies capabilities in executable files (PE, ELF, .NET, shellcode) using 1000+ detection rules. Maps findings to ATT&CK techniques and MBC behaviors.
onion-keyword-finder
Tool to crawl onion websites and match keywords
hydra
Fast network logon cracker supporting many different services
malicious-url-scanner
Tool to check if a URL is known for malicious activity
ipwhois
Retrieve and parse WHOIS and RDAP information for IPv4/IPv6 addresses and domain names. Supports ASN lookups, network information, contact details, and registrar data through RDAP or legacy WHOIS protocols.
wpscan
WordPress Security Scanner that identifies security issues in WordPress installations
cyber-news
Tool to get the latest Cybersecurity news
zap
OWASP ZAP (Zed Attack Proxy) - comprehensive web application security scanner for finding vulnerabilities
gau
Fetches known URLs from AlienVault's OTX, Wayback Machine, Common Crawl, and URLScan
httpx
This is a HTTP toolkit that is able to detect technologies of a web application, and/or take screenshots
whatweb
Next generation web scanner that identifies websites, recognizes web technologies including CMS, blogging platforms, JavaScript libraries, web servers, and more
cewl
Spiders websites to create word lists for password cracking. Can identify emails and other metadata.
login-checker-vpn
Tool to check login functionality and detect 2FA on websites
login-checker
Tool to check login functionality and detect 2FA on websites
summarize-agent
Tool to summarize and ask questions about documents and text files
theharvester
OSINT tool for gathering emails, subdomains, hosts, employee names, open ports and banners
cero
A tool that connects to remote hosts and extracts domain names from TLS certificates
naabu
A fast and port scanning tool, does not detect protocol
testssl
Command line tool to check SSL/TLS enabled services for supported ciphers, protocols, and cryptographic flaws
dalfox
XSS scanning and parameter analysis tool
wafw00f
Identifies Application Firewall products for the given URLs
dorxng
OSINT data harvesting tool using multiple search engines over Tor with engine attribution
apk-hunt
Comprehensive static code analysis tool for Android APK files based on OWASP MASVS framework
info-screening-agent
Tool to search for defined entities in documents
dnsx
A DNS toolkit, detects DNS information of given subdomains or IPs
malware-static-analysis
Performs static analysis on suspected malware files using YARA rules, supporting a wide range of formats including PE/exe/dll/bin binaries, Office documents (doc, docx, xls, xlsx, ppt, pptx), and PDFs. Enables efficient detection of malicious patterns without executing the sample.
r_powershell
Execute powershell commands on a compromised Windows system
roadtools
ROADtools framework for Azure AD reconnaissance, including authentication, data gathering, and timeline analysis capabilities
s3scannerstdout
A tool to find open S3 buckets and enumerate their contents across multiple cloud providers
mail-reporting
Tool for sending automated emails with attachments