Tools

Tools

Offensive & Defensive Tools

General Tools

  • CyberChef: All-in-one data processing “Swiss Army Knife” for cyber pros.
  • Carbon: Beautiful code snippet image generator.
  • Netcraft Site Report: Website info, technologies, and security headers.
  • CSP Evaluator: Analyse and improve Content Security Policy headers.
  • WebCheck: Security header checker and quick web analysis.
  • Interact sh: OOB (out-of-band) service for finding vulnerabilities.
  • Subdomain Finder: Quick subdomain enumeration.
  • Crackstation: Password hash cracking.
  • ShellCheck Online: Analyze and lint your shell scripts in the browser.
  • xssnow.in Serves as an educational guide and documentation platform for understanding and testing Cross-Site Scripting (XSS) security vulnerabilities.

Red Team & Post-Exploitation

  • RevShells: Generate reverse shell commands for multiple languages.
  • Art Toolkit: Useful red team resource.
  • Exploit Notes: Quick exploit & payload references.
  • JWT Auditor: Test JWT tokens for common security issues.
  • adsecurity.org: is a cybersecurity blog focused on securing Active Directory and Azure AD/Entra ID, detailing attack methods, defenses, and practical security tips.
  • BloodHound Queries For All: BloodHound Query Library

Obfuscation, Evasion, & Bypass

Security Maps

Windows privesc

Linux privesc

NXC

POC’s


Knowledge Bases, Cheatsheets & Guides

General References

Writeups, Labs & Practical Guides


AI, Red/Purple Teaming & Prompt Security