Offensive Sec Blog

Security of Information, Threat Intelligence, Hacking, Offensive Security, Pentest, Open Source, Hackers Tools, Leaks, Pr1v8, Premium Courses Free, etc

  • Penetration Testing Distribution - BackBox

    BackBox is a penetration test and security assessment oriented Ubuntu-based Linux distribution providing a network and informatic systems analysis toolkit. It includes a complete set of tools required for ethical hacking and security testing...

  • Pentest Distro Linux - Weakerth4n

    Weakerth4n is a penetration testing distribution which is built from Debian Squeeze.For the desktop environment it uses Fluxbox...

  • The Amnesic Incognito Live System - Tails

    Tails is a live system that aims to preserve your privacy and anonymity. It helps you to use the Internet anonymously and circumvent censorship...

  • Penetration Testing Distribution - BlackArch

    BlackArch is a penetration testing distribution based on Arch Linux that provides a large amount of cyber security tools. It is an open-source distro created specially for penetration testers and security researchers...

  • The Best Penetration Testing Distribution - Kali Linux

    Kali Linux is a Debian-based distribution for digital forensics and penetration testing, developed and maintained by Offensive Security. Mati Aharoni and Devon Kearns rewrote BackTrack...

  • Friendly OS designed for Pentesting - ParrotOS

    Parrot Security OS is a cloud friendly operating system designed for Pentesting, Computer Forensic, Reverse engineering, Hacking, Cloud pentesting...
Showing posts with label Footprint. Show all posts
Showing posts with label Footprint. Show all posts

Sunday, August 26, 2018

Takeover - SubDomain TakeOver Vulnerability Scanner

      , ,       No comments    
Sub-domain takeover vulnerability occur when a sub-domain (subdomain.example.com) is pointing to a service (e.g: GitHub, AWS/S3,..) that has been removed or deleted. This allows an attacker to set up a page on the service that was being used and point their...
Share:

Sunday, August 12, 2018

AutoNSE - Massive NSE (Nmap Scripting Engine) AutoSploit And AutoScanner

      , , , , , ,       No comments    
Massive NSE (Nmap Scripting Engine) AutoSploit and AutoScanner. The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts (using the Lua programming language ) to automate a...
Share:

PortWitness - Tool For Checking Whether A Domain Or Its Multiple Sub-Domains Are Up And Running

      , ,       No comments    
PortWitness is a bash tool designed to find out active domain and subdomains of websites using port scanning. It helps penetration testers and bug hunters collect and gather information about active subdomains for the domain they are targeting.PortWitness...
Share:

Sunday, April 23, 2017

51 Tools for Security Analysts - Offensive Sec

      , , , , ,       No comments    
Reading this list may be worrying or intimidating for readers who don’t work in the security industry. You should know that all tools on this list are free and publicly accessible. They are also well known within the professional security community and...
Share:

Wednesday, January 6, 2016

SpiderFoot v2.6.1 - Open Source Intelligence Automation

      , ,       No comments    
SpiderFoot is an open source intelligence automation tool. Its goal is to automate the process of gathering intelligence about a given target.Purpose There are three main areas where SpiderFoot can be useful: If you are a pen-tester, SpiderFoot will automate...
Share:

Tuesday, January 5, 2016

Intrigue - Intelligence Gathering Framework

      , , ,       No comments    
Intrigue-core is an API-first intelligence gathering framework for Internet reconnaissance and research.Setting up a development environmentThe following are presumed available and configured in your environmentredissudonmapzmapmasscanjava runtimeSudo is used...
Share:

Monday, January 4, 2016

Just-Metadata - Tool that Gathers and Analyzes Metadata about IP Addresses

      ,       No comments    
Just-Metadata is a tool that can be used to gather intelligence information passively about a large number of IP addresses, and attempt to extrapolate relationships that might not otherwise be seen. Just-Metadata has "gather" modules which are used to gather...
Share:
Copyright © 2025 Offensive Sec Blog | Powered by OffensiveSec
Design by OffSec | Theme by Nasa Records | Distributed By Pirate Edition