Tor Tools

• OnionScan - Tool for investigating the Dark Web by finding operational security issues introduced by Tor hidden service operators.
• Tor - Free software and onion routed overlay network that helps you defend against traffic analysis.
• awesome-tor
• Nipe - Script to redirect all traffic from the machine to the Tor network.
• dos-over-tor - Proof of concept denial of service over Tor stress test tool.
• kalitorify - Transparent proxy through Tor for Kali Linux OS.
• Tails - Live operating system aiming to preserve your privacy and anonymity.

• Metadata Anonymization Toolkit (MAT) - Metadata removal tool, supporting a wide range of commonly used file formats, written in Python3.
• What Every Browser Knows About You - Comprehensive detection page to test your own Web browser's configuration for privacy and identity leaks.
• What Every Browser Knows About You - Comprehensive detection page to test your own Web browser's configuration for privacy and identity leaks.
• I2P - The Invisible Internet Project.

Tor Tools

• Hyperion - Runtime encryptor for 32-bit portable executables ("PE `.exe`s").
• Shellter - Dynamic shellcode injection tool, and the first truly dynamic PE infector ever created.
• UniByAv - Simple obfuscator that takes raw shellcode and generates Anti-Virus friendly executables by using a brute-forcable, 32-bit XOR key.
• Veil - Generate metasploit payloads that bypass common anti-virus solutions.
• AntiVirus Evasion Tool (AVET) - Post-process exploits containing executable files targeted for Windows machines to avoid being recognized by antivirus software.
• CarbonCopy - Tool that creates a spoofed certificate of any online website and signs an Executable for AV evasion.
• peCloakCapstone - Multi-platform fork of the peCloak.py automated malware antivirus evasion tool.
• Amber - Reflective PE packer for converting native PE files to position-independent shellcode.
• Shellter - Dynamic shellcode injection tool, and the first truly dynamic PE infector ever created.

Malware Analysis Books

• awesome-malware-analysis § Books

Tor Tools

• DEF CON Suggested Reading
• Advanced Penetration Testing for Highly-Secured Environments by Lee Allen, 2012
• Advanced Persistent Threat Hacking: The Art and Science of Hacking Any Organization by Tyler Wrightson, 2014
• Android Hacker's Handbook by Joshua J. Drake et al., 2014
• BTFM: Blue Team Field Manual by Alan J White & Ben Clark, 2017
• Black Hat Python: Python Programming for Hackers and Pentesters by Justin Seitz, 2014
• Bug Hunter's Diary by Tobias Klein, 2011
• Car Hacker's Handbook by Craig Smith, 2016
• Fuzzing: Brute Force Vulnerability Discovery by Michael Sutton et al., 2007
• Penetration Testing: A Hands-On Introduction to Hacking by Georgia Weidman, 2014
• Penetration Testing: Procedures & Methodologies by EC-Council, 2010
• Professional Penetration Testing by Thomas Wilhelm, 2013
• The Art of Exploitation by Jon Erickson, 2008
• The Basics of Hacking and Penetration Testing by Patrick Engebretson, 2013
• The Database Hacker's Handbook, David Litchfield et al., 2005
• The Mac Hacker's Handbook by Charlie Miller & Dino Dai Zovi, 2009
• The Mobile Application Hacker's Handbook by Dominic Chell et al., 2015
• Unauthorised Access: Physical Penetration Testing For IT Security Teams by Wil Allsopp, 2010
• iOS Hacker's Handbook by Charlie Miller et al., 2012
• The Hacker Playbook by Peter Kim, 2014
• Effective Software Testing, 2021
• The Art of Network Penetration Testing, 2020
• DEF CON Suggested Reading
• Fuzzing: Brute Force Vulnerability Discovery by Michael Sutton et al., 2007
• Advanced Persistent Threat Hacking: The Art and Science of Hacking Any Organization by Tyler Wrightson, 2014
• Advanced Penetration Testing by Wil Allsopp, 2017
• Black Hat Python: Python Programming for Hackers and Pentesters by Justin Seitz, 2014
• Unauthorised Access: Physical Penetration Testing For IT Security Teams by Wil Allsopp, 2010
• Penetration Testing: Procedures & Methodologies by EC-Council, 2010
• RTFM: Red Team Field Manual by Ben Clark, 2014
• The Hacker Playbook by Peter Kim, 2014
• Advanced Penetration Testing for Highly-Secured Environments by Lee Allen, 2012

Malware Analysis Books

• HackingThe.cloud
• Cloud Container Attack Tool (CCAT) - Tool for testing security of container environments.
• CloudHunter - Looks for AWS, Azure and Google cloud storage buckets and lists permissions for vulnerable buckets.
• GCPBucketBrute - Script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.

Malware Analysis Books

• Dradis - Open-source reporting and collaboration tool for IT security professionals.
• Hexway Hive - Commercial collaboration, data aggregation, and reporting framework for red teams with a limited free self-hostable option.
• Lair - Reactive attack collaboration framework and web application built with meteor.
• Reconmap - Open-source collaboration platform for InfoSec professionals that streamlines the pentest process.
• Pentest Collaboration Framework (PCF) - Open source, cross-platform, and portable toolkit for automating routine pentest processes with a team.
• Reconmap - Open-source collaboration platform for InfoSec professionals that streamlines the pentest process.
• RedELK - Track and alarm about Blue Team activities while providing better usability in long term offensive operations.
• Reconmap - Open-source collaboration platform for InfoSec professionals that streamlines the pentest process.

Asia

• HITB - Deep-knowledge security conference held in Malaysia and The Netherlands.
• HITCON - Hacks In Taiwan Conference held in Taiwan.
• SECUINSIDE - Security Conference in Seoul.
• Nullcon - Annual conference in Delhi and Goa, India.
• HITCON - Hacks In Taiwan Conference held in Taiwan.
• Nullcon - Annual conference in Delhi and Goa, India.

Europe

• 44Con - Annual Security Conference held in London.
• CCC - Annual meeting of the international hacker scene in Germany.
• DeepSec - Security Conference in Vienna, Austria.
• FSec - FSec - Croatian Information Security Gathering in Varaždin, Croatia.
• Hack.lu - Annual conference held in Luxembourg.
• Infosecurity Europe - Europe's number one information security event, held in London, UK.
• SteelCon - Security conference in Sheffield UK.
• Swiss Cyber Storm - Annual security conference in Lucerne, Switzerland.
• Troopers - Annual international IT Security event with workshops held in Heidelberg, Germany.
• HoneyCON - Annual Security Conference in Guadalajara, Spain. Organized by the HoneySEC association.
• DefCamp - Largest Security Conference in Eastern Europe, held annually in Bucharest, Romania.

Malware Analysis Books

• BSides - Framework for organising and holding security conferences.
• CTFTime.org - Directory of upcoming and archive of past Capture The Flag (CTF) competitions with links to challenge writeups.
• BSides - Framework for organising and holding security conferences.

North America

• AppSecUSA - Annual conference organized by OWASP.
• CarolinaCon - Infosec conference, held annually in North Carolina.
• DerbyCon - Annual hacker conference based in Louisville.
• Hackers Next Door - Cybersecurity and social technology conference held in New York City.
• Hackers On Planet Earth (HOPE) - Semi-annual conference held in New York City.
• Hackfest - Largest hacking conference in Canada.
• LayerOne - Annual US security conference held every spring in Los Angeles.
• National Cyber Summit - Annual US security conference and Capture the Flag event, held in Huntsville, Alabama, USA.
• PhreakNIC - Technology conference held annually in middle Tennessee.
• RSA Conference USA - Annual security conference in San Francisco, California, USA.
• SkyDogCon - Technology conference in Nashville.
• SummerCon - One of the oldest hacker conventions in America, held during Summer.
• ThotCon - Annual US hacker conference held in Chicago.
• DEF CON - Annual hacker convention in Las Vegas.
• PhreakNIC - Technology conference held annually in middle Tennessee.
• ShmooCon - Annual US East coast hacker convention.
• AppSecUSA - Annual conference organized by OWASP.
• Black Hat - Annual security conference in Las Vegas.

South America

• Ekoparty - Largest Security Conference in Latin America, held annually in Buenos Aires, Argentina.
• Hackers to Hackers Conference (H2HC) - Oldest security research (hacking) conference in Latin America and one of the oldest ones still active in the world.

Zealandia

• CHCon - Christchurch Hacker Con, Only South Island of New Zealand hacker con.

Malware Analysis Books

• CTF Field Guide - Everything you need to win your next CTF competition.
• RsaCtfTool - Decrypt data enciphered using weak RSA keys, and recover private keys from public keys using a variety of automated attacks.
• ctf-tools - Collection of setup scripts to install various security research tools easily and quickly deployable to new machines.
• shellpop - Easily generate sophisticated reverse or bind shell commands to help you save time during penetration tests.
• Ciphey - Automated decryption tool using artificial intelligence and natural language processing.

Zealandia

• Iodine - Tunnel IPv4 data through a DNS server; useful for exfiltration from networks where Internet access is firewalled, but DNS queries are allowed.
• tgcd - Simple Unix network utility to extend the accessibility of TCP/IP based network services beyond firewalls.
• DET - Proof of concept to perform data exfiltration using either single or multiple channel(s) at the same time.
• TrevorC2 - Client/server tool for masking command and control and data exfiltration through a normally browsable website, not typical HTTP POST requests.
• dnscat2 - Tool designed to create an encrypted command and control channel over the DNS protocol, which is an effective tunnel out of almost every network.
• pwnat - Punches holes in firewalls and NATs.
• QueenSono - Client/Server Binaries for data exfiltration with ICMP. Useful in a network where ICMP protocol is less monitored than others (which is a common case).
• tgcd - Simple Unix network utility to extend the accessibility of TCP/IP based network services beyond firewalls.

Zealandia

• H26Forge - Domain-specific infrastructure for analyzing, generating, and manipulating syntactically correct but semantically spec-non-compliant video files.
• Magic Unicorn - Shellcode generator for numerous attack vectors, including Microsoft Office macros, PowerShell, HTML applications (HTA), or `certutil` (using fake certificates).
• Pwntools - Rapid exploit development framework built for use in CTFs.
• Wordpress Exploit Framework - Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.
• peda - Python Exploit Development Assistance for GDB.

Zealandia

• Hachoir - Python library to view and edit a binary stream as tree of fields and tools for metadata extraction.
• peepdf - Python tool to explore PDF files in order to find out if the file can be harmful or not.
• Veles - Binary data visualization and analysis tool.
• ExifTool - Platform-independent Perl library plus a command-line application for reading, writing and editing meta information in a wide variety of files.

Zealandia

• Lynis - Auditing tool for UNIX-based systems.
• checksec.sh - Shell script designed to test what standard Linux OS and PaX security features are being used.
• Hwacha - Post-exploitation tool to quickly execute payloads via SSH on one or more Linux systems simultaneously.
• Linux Exploit Suggester - Heuristic reporting on potentially viable exploits for a given GNU/Linux system.

Zealandia

• CeWL - Generates custom wordlists by spidering a target's website and collecting unique words.
• Rar Crack - RAR bruteforce cracker.
• BruteForce Wallet - Find the password of an encrypted wallet file (i.e. `wallet.dat`).
• duplicut - Quickly remove duplicates, without changing the order, and without getting OOM on huge wordlists.
• GoCrack - Management Web frontend for distributed password cracking sessions using hashcat (or other supported tools) written in Go.
• hate_crack - Tool for automating cracking methodologies through Hashcat.
• JWT Cracker - Simple HS256 JSON Web Token (JWT) token brute force cracker.

Zealandia

• Frhed - Binary file editor for Windows.
• Hexinator - World's finest (proprietary, commercial) Hex Editor.
• wxHexEditor - Free GUI hex editor for GNU/Linux, macOS, and Windows.
• Bless - High quality, full featured, cross-platform graphical hex editor written in Gtk#.
• hexedit - Simple, fast, console-based hex editor.
• Frhed - Binary file editor for Windows.

Zealandia

• OpalOPC - Commercial OPC UA vulnerability assessment tool, sold by Molemmat.
• awesome-industrial-control-system-security
• Industrial Exploitation Framework (ISF) - Metasploit-like exploit framework based on routersploit designed to target Industrial Control Systems (ICS), SCADA devices, PLC firmware, and more.
• s7scan - Scanner for enumerating Siemens S7 PLCs on a TCP/IP or LLC network.

Intentionally Vulnerable Systems as Docker Containers

• Damn Vulnerable Web Application (DVWA) - `docker pull citizenstig/dvwa`.
• OWASP Mutillidae II Web Pen-Test Practice Application - `docker pull citizenstig/nowasp`.
• OWASP Security Shepherd - `docker pull ismisepaul/securityshepherd`.
• OWASP WebGoat Project 7.1 docker image - `docker pull webgoat/webgoat-7.1`.
• OWASP WebGoat Project 8.0 docker image - `docker pull webgoat/webgoat-8.0`.
• Vulnerability as a service: Heartbleed - `docker pull hmlio/vaas-cve-2014-0160`.
• Vulnerability as a service: SambaCry - `docker pull vulnerables/cve-2017-7494`.
• Vulnerability as a service: Shellshock - `docker pull hmlio/vaas-cve-2014-6271`.
• OWASP NodeGoat - `docker-compose build && docker-compose up`.
• Vulnerability as a service: Heartbleed - `docker pull hmlio/vaas-cve-2014-0160`.
• Vulnerability as a service: Shellshock - `docker pull hmlio/vaas-cve-2014-6271`.

Zealandia

• Pentest-Ground
• awesome-vulnerable

Intentionally Vulnerable Systems as Docker Containers

• awesome-lockpicking

Intentionally Vulnerable Systems as Docker Containers

• EvilOSX - Modular RAT that uses numerous evasion and exfiltration techniques out-of-the-box.
• Bella - Pure Python post-exploitation data mining and remote administration tool for macOS.

Intentionally Vulnerable Systems as Docker Containers

• Armitage - Java-based GUI front-end for the Metasploit Framework.
• Metasploit - Software for offensive security teams to help verify vulnerabilities and manage security assessments.
• AutoSploit - Automated mass exploiter, which collects target by employing the Shodan.io API and programmatically chooses Metasploit exploit modules based on the Shodan query.
• Decker - Penetration testing orchestration and automation framework, which allows writing declarative, reusable configurations capable of ingesting variables and using outputs of tools it has run as inputs to others.
• Faraday - Multiuser integrated pentesting environment for red teams performing cooperative penetration tests, security audits, and risk assessments.
• Pupy - Cross-platform (Windows, Linux, macOS, Android) remote administration and post-exploitation tool.

DDoS Tools

• Anevicon - Powerful UDP-based load generator, written in Rust.
• HOIC - Updated version of Low Orbit Ion Cannon, has 'boosters' to get around common counter measures.
• T50 - Faster network stress tool.
• D(HE)ater - D(HE)ater sends forged cryptographic handshake messages to enforce the Diffie-Hellman key exchange.
• Low Orbit Ion Canon (LOIC) - Open source network stress tool written for Windows.
• Memcrashed - DDoS attack tool for sending forged UDP packets to vulnerable Memcached servers obtained using Shodan API.
• SlowLoris - DoS tool that uses low bandwidth on the attacking side.
• UFONet - Abuses OSI layer 7 HTTP to create/manage 'zombies' and to conduct different attacks using; `GET`/`POST`, multithreading, proxies, origin spoofing methods, cache evasion techniques, etc.

Intentionally Vulnerable Systems as Docker Containers

• Intercepter-NG - Multifunctional network toolkit.
• Ncrack - High-speed network authentication cracking tool built to help companies secure their networks by proactively testing all their hosts and networking devices for poor passwords.
• Praeda - Automated multi-function printer data harvester for gathering usable data during security assessments.
• dsniff - Collection of tools for network auditing and pentesting.
• CrackMapExec - Swiss army knife for pentesting networks.
• IKEForce - Command line IPSEC VPN brute forcing tool for Linux that allows group name/ID enumeration and XAUTH brute forcing capabilities.
• Intercepter-NG - Multifunctional network toolkit.
• Legion - Graphical semi-automated discovery and reconnaissance framework based on Python 3 and forked from SPARTA.
• Network-Tools.com - Website offering an interface to numerous basic network utilities like `ping`, `traceroute`, `whois`, and more.
• Praeda - Automated multi-function printer data harvester for gathering usable data during security assessments.
• Printer Exploitation Toolkit (PRET) - Tool for printer security testing capable of IP and USB connectivity, fuzzing, and exploitation of PostScript, PJL, and PCL printer language features.
• SigPloit - Signaling security testing framework dedicated to telecom security for researching vulnerabilites in the signaling protocols used in mobile (cellular phone) operators.
• THC Hydra - Online password cracking tool with built-in support for many network protocols, including HTTP, SMB, FTP, telnet, ICQ, MySQL, LDAP, IMAP, VNC, and more.
• Tsunami - General purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
• Zarp - Network attack tool centered around the exploitation of local networks.