• Categories
  • Tools

    Below is a catalogue of different security tools, products, and services that I use in my work and personal life. These tools are being referenced as a convenience for informational purposes only and do not necessarily constitute an endorsement.

    BuiltWith

    BuiltWith checks websites for snippets of code or tags related to some technologies. Since that data is publicly...

    crt.sh

    A popular CT search tool is crt.sh. Subdomains can be detected using Certificate Transparency (CT). SSL/TLS certificates...

    DataSploit

    DataSploit is an open source intelligence collection (OSINT) tool. It is a simple way to dump data for a domain...

    GoLismero

    GoLismero is an open source framework for security testing. It's currently geared towards web security, but...

    Nmap

    Nmap  is a free and open source utility for network discovery and security auditing. Many systems and...

    Recon-NG

    Recon-NG is a reconnaissance tool with an interface similar to Metasploit. Running Recon-NG from the command line,...

    ReVeRsE-IP

    A python based non-interactive ugly reverse IP lookup script to find domains on a target server.

    Sn1per

    Sn1per works by automating a bunch of processes that collect basic recon on a target domain, (for example executing...

    Sublist3r

    Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers...

    WPScan

    WPScan is an open source WordPress security scanner. You can use it to scan your WordPress website for known vulnerabilities...