Zuckergates Tools logo
Zuckergates Tools
// CYBERSECURITY_OPS409 TOOLS

Dual Ops Console

Pilih mode offensive atau defensive. Filter berdasarkan fase kill chain, harga, atau cari langsung. Lihat flow nyata di mode Flow.

Full Chain · klik fase untuk filter
Pricing
409 hasil

Network & Recon

[75]

Nmap

Port scanner & pemetaan jaringan, standar industri.

freebeginner

Masscan

Port scanner super cepat untuk skala internet.

freeintermediate

Zmap

Network scanner berkecepatan tinggi untuk riset.

freeintermediate

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

tcpdump

CLI packet capture klasik untuk Unix.

freeintermediate

Netcat

Swiss army knife untuk koneksi TCP/UDP.

freebeginner

Angry IP Scanner

Pemindai IP cross-platform yang ringan.

freebeginner

RustScan

Port scanner modern berbasis Rust, super cepat.

freebeginner

Naabu

Port scanner cepat dari ProjectDiscovery.

freebeginner

Subfinder

Subdomain enumeration pasif dari banyak sumber.

freebeginner

Amass

Pemetaan attack surface & subdomain (OWASP).

freeintermediate

Httpx

HTTP toolkit cepat untuk probing host.

freebeginner

Dnsx

DNS toolkit cepat dari ProjectDiscovery.

freebeginner

Asnmap

Lookup ASN, prefix, & IP range cepat.

freebeginner

Fierce

DNS reconnaissance & subdomain bruteforce.

freebeginner

Smap

Drop-in Nmap mirror tanpa kirim paket (pakai Shodan).

freebeginner

Gobuster

Brute-force direktori, file, dan subdomain.

freebeginner

Bettercap

Swiss army knife WiFi, BLE, & MitM.

freeadvanced

dnsenum

Enumerate DNS info & subdomain via banyak teknik.

freebeginner

dnsrecon

DNS reconnaissance & zone transfer testing.

freebeginner

dnstwist

Cari typosquatting & lookalike domain.

freebeginner

EyeWitness

Screenshot bulk web service untuk recon.

freebeginner

gowitness

Headless screenshot web service berbasis Go.

freebeginner

Sn1per

Automated attack surface scanner all-in-one.

freemiumintermediate

Aquatone

Visual recon attack surface dari list domain.

freebeginner

Mitmproxy

Interactive HTTPS proxy untuk inspect & modify.

freeintermediate

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Arkime (Moloch)

Indexed full packet capture skala besar.

freeadvanced

Chisel

TCP/UDP tunnel cepat via HTTP, populer buat pivot.

freeintermediate

Ligolo-ng

Modern reverse tunneling untuk pivoting jaringan.

freeintermediate

gost

Secure tunneling multi-protocol GO Simple Tunnel.

freeintermediate

WhatWeb

Identifikasi teknologi web (CMS, framework, library).

freebeginner

mitm6

IPv6 attack untuk Windows network (DHCPv6 hijack).

freeadvanced

Fofa

Cyberspace asset search engine populer di Asia.

freemiumbeginner

WAFW00F

Identifikasi WAF di depan target web.

freebeginner

CrackMapExec

Swiss army knife untuk pentest Active Directory.

freeadvanced

ADRecon

Recon AD untuk extract konfigurasi & user.

freeintermediate

Interactsh

OOB interaction server untuk deteksi blind SSRF/XSS/RCE.

freeintermediate

Notify

Stream output recon ke Slack/Discord/Telegram dari ProjectDiscovery.

freebeginner

Cloudlist

List aset cloud lintas provider untuk attack surface.

freebeginner

Mapcidr

Manipulasi CIDR & IP range cepat untuk pipeline scan.

freebeginner

Tlsx

TLS data gathering & banner grabber dari ProjectDiscovery.

freebeginner

Bloodhound CE

Community Edition BloodHound generasi baru untuk AD/AzureAD.

freeadvanced

Httpx

HTTP toolkit cepat untuk probing host.

freebeginner

Gobuster

Brute-force direktori, file, dan subdomain.

freebeginner

EyeWitness

Screenshot bulk web service untuk recon.

freebeginner

gowitness

Headless screenshot web service berbasis Go.

freebeginner

Aquatone

Visual recon attack surface dari list domain.

freebeginner

Mitmproxy

Interactive HTTPS proxy untuk inspect & modify.

freeintermediate

WhatWeb

Identifikasi teknologi web (CMS, framework, library).

freebeginner

WAFW00F

Identifikasi WAF di depan target web.

freebeginner

Interactsh

OOB interaction server untuk deteksi blind SSRF/XSS/RCE.

freeintermediate

Netcat

Swiss army knife untuk koneksi TCP/UDP.

freebeginner

Chisel

TCP/UDP tunnel cepat via HTTP, populer buat pivot.

freeintermediate

Ligolo-ng

Modern reverse tunneling untuk pivoting jaringan.

freeintermediate

gost

Secure tunneling multi-protocol GO Simple Tunnel.

freeintermediate

mitm6

IPv6 attack untuk Windows network (DHCPv6 hijack).

freeadvanced

CrackMapExec

Swiss army knife untuk pentest Active Directory.

freeadvanced

ADRecon

Recon AD untuk extract konfigurasi & user.

freeintermediate

Bloodhound CE

Community Edition BloodHound generasi baru untuk AD/AzureAD.

freeadvanced

Bettercap

Swiss army knife WiFi, BLE, & MitM.

freeadvanced

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

tcpdump

CLI packet capture klasik untuk Unix.

freeintermediate

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Arkime (Moloch)

Indexed full packet capture skala besar.

freeadvanced

Sn1per

Automated attack surface scanner all-in-one.

freemiumintermediate

Cloudlist

List aset cloud lintas provider untuk attack surface.

freebeginner

Nmap

Port scanner & pemetaan jaringan, standar industri.

freebeginner

Subfinder

Subdomain enumeration pasif dari banyak sumber.

freebeginner

Amass

Pemetaan attack surface & subdomain (OWASP).

freeintermediate

Smap

Drop-in Nmap mirror tanpa kirim paket (pakai Shodan).

freebeginner

dnstwist

Cari typosquatting & lookalike domain.

freebeginner

Fofa

Cyberspace asset search engine populer di Asia.

freemiumbeginner

Web Application Testing

[85]

Httpx

HTTP toolkit cepat untuk probing host.

freebeginner

Gobuster

Brute-force direktori, file, dan subdomain.

freebeginner

EyeWitness

Screenshot bulk web service untuk recon.

freebeginner

gowitness

Headless screenshot web service berbasis Go.

freebeginner

Aquatone

Visual recon attack surface dari list domain.

freebeginner

Mitmproxy

Interactive HTTPS proxy untuk inspect & modify.

freeintermediate

WhatWeb

Identifikasi teknologi web (CMS, framework, library).

freebeginner

WAFW00F

Identifikasi WAF di depan target web.

freebeginner

Interactsh

OOB interaction server untuk deteksi blind SSRF/XSS/RCE.

freeintermediate

Httpx

HTTP toolkit cepat untuk probing host.

freebeginner

Burp Suite

Proxy intercept & testing web app, andalan bug hunter.

freemiumintermediate

OWASP ZAP

Scanner keamanan web app open-source (OWASP).

freebeginner

Caido

Web pentest proxy modern alternatif Burp.

freemiumintermediate

Nikto

Pemindai cepat kerentanan pada web server.

freebeginner

SQLMap

Otomatisasi deteksi & eksploitasi SQL injection.

freeintermediate

Gobuster

Brute-force direktori, file, dan subdomain.

freebeginner

FFUF

Fast web fuzzer berbasis Go.

freeintermediate

Feroxbuster

Recursive content discovery cepat dalam Rust.

freebeginner

Dirsearch

Brute-force path & file pada web server.

freebeginner

Wfuzz

Fuzzer untuk brute-force parameter & path web.

freeintermediate

XSStrike

Pendeteksi XSS dengan engine fuzzing canggih.

freeintermediate

Dalfox

Scanner XSS otomatis berbasis Go.

freeintermediate

Commix

Automated OS command injection exploitation.

freeintermediate

Arjun

Discover HTTP parameter tersembunyi.

freebeginner

ParamSpider

Cari parameter URL dari arsip web.

freebeginner

Katana

Crawler web cepat dari ProjectDiscovery.

freebeginner

Hakrawler

Web crawler cepat untuk bug bounty.

freebeginner

Waybackurls

Ambil URL historis dari Wayback Machine.

freebeginner

GAU

Get All URLs dari arsip publik (gau).

freebeginner

tplmap

Deteksi & eksploitasi server-side template injection.

freeadvanced

Wapiti

Web vulnerability scanner open-source.

freebeginner

kiterunner

Content discovery khusus API.

freeintermediate

Postman

Platform testing API yang umum dipakai.

freemiumbeginner

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

Nuclei

Scanner berbasis template YAML yang cepat.

freeintermediate

Arachni

Web application security scanner berfitur kaya.

freeintermediate

EyeWitness

Screenshot bulk web service untuk recon.

freebeginner

gowitness

Headless screenshot web service berbasis Go.

freebeginner

Aquatone

Visual recon attack surface dari list domain.

freebeginner

WPScan

Scanner kerentanan khusus WordPress.

freemiumbeginner

JoomScan

OWASP scanner kerentanan Joomla.

freebeginner

testssl.sh

Cek konfigurasi TLS/SSL service.

freebeginner

SSLyze

Analisis konfigurasi TLS server cepat.

freebeginner

ssh-audit

Audit konfigurasi SSH server & client.

freebeginner

ZAP HUD

Heads-up display untuk pentest interaktif.

freebeginner

Mitmproxy

Interactive HTTPS proxy untuk inspect & modify.

freeintermediate

PayloadsAllTheThings

Koleksi payload & bypass untuk pentest.

freebeginner

HackTricks

Wiki teknik pentest & CTF mendetail.

freebeginner

SecLists

Koleksi wordlist untuk pentest segala kebutuhan.

freebeginner

WhatWeb

Identifikasi teknologi web (CMS, framework, library).

freebeginner

CMSeek

Deteksi & enumerasi CMS (WP, Joomla, Drupal, dll).

freebeginner

Droopescan

Scanner CMS Drupal, Silverstripe, Joomla.

freebeginner

WAFW00F

Identifikasi WAF di depan target web.

freebeginner

NoSQLMap

Automated NoSQL injection & enumeration.

freeintermediate

Acunetix

Automated web application security scanner.

paidintermediate

Invicti

DAST enterprise untuk aplikasi web.

paidintermediate

Interactsh

OOB interaction server untuk deteksi blind SSRF/XSS/RCE.

freeintermediate

Mantra

Cari API key & secret di JavaScript file responses.

freebeginner

Vulnetic AI

AI pentest agent otonom untuk recon & exploitasi.

freemiumintermediate

XBOW

Autonomous AI pentester untuk web target.

paidadvanced

Nuclei Templates Editor

Editor visual & validator template Nuclei dari ProjectDiscovery.

freemiumintermediate

SQLMap

Otomatisasi deteksi & eksploitasi SQL injection.

freeintermediate

Commix

Automated OS command injection exploitation.

freeintermediate

tplmap

Deteksi & eksploitasi server-side template injection.

freeadvanced

PayloadsAllTheThings

Koleksi payload & bypass untuk pentest.

freebeginner

HackTricks

Wiki teknik pentest & CTF mendetail.

freebeginner

SecLists

Koleksi wordlist untuk pentest segala kebutuhan.

freebeginner

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

OWASP ZAP

Scanner keamanan web app open-source (OWASP).

freebeginner

Nikto

Pemindai cepat kerentanan pada web server.

freebeginner

Wapiti

Web vulnerability scanner open-source.

freebeginner

Nuclei

Scanner berbasis template YAML yang cepat.

freeintermediate

Arachni

Web application security scanner berfitur kaya.

freeintermediate

WPScan

Scanner kerentanan khusus WordPress.

freemiumbeginner

JoomScan

OWASP scanner kerentanan Joomla.

freebeginner

testssl.sh

Cek konfigurasi TLS/SSL service.

freebeginner

SSLyze

Analisis konfigurasi TLS server cepat.

freebeginner

ssh-audit

Audit konfigurasi SSH server & client.

freebeginner

Acunetix

Automated web application security scanner.

paidintermediate

Invicti

DAST enterprise untuk aplikasi web.

paidintermediate

Vulnetic AI

AI pentest agent otonom untuk recon & exploitasi.

freemiumintermediate

Nuclei Templates Editor

Editor visual & validator template Nuclei dari ProjectDiscovery.

freemiumintermediate

Waybackurls

Ambil URL historis dari Wayback Machine.

freebeginner

GAU

Get All URLs dari arsip publik (gau).

freebeginner

Exploitation Frameworks

[78]

Netcat

Swiss army knife untuk koneksi TCP/UDP.

freebeginner

Chisel

TCP/UDP tunnel cepat via HTTP, populer buat pivot.

freeintermediate

Ligolo-ng

Modern reverse tunneling untuk pivoting jaringan.

freeintermediate

gost

Secure tunneling multi-protocol GO Simple Tunnel.

freeintermediate

mitm6

IPv6 attack untuk Windows network (DHCPv6 hijack).

freeadvanced

CrackMapExec

Swiss army knife untuk pentest Active Directory.

freeadvanced

ADRecon

Recon AD untuk extract konfigurasi & user.

freeintermediate

Bloodhound CE

Community Edition BloodHound generasi baru untuk AD/AzureAD.

freeadvanced

SQLMap

Otomatisasi deteksi & eksploitasi SQL injection.

freeintermediate

Commix

Automated OS command injection exploitation.

freeintermediate

tplmap

Deteksi & eksploitasi server-side template injection.

freeadvanced

PayloadsAllTheThings

Koleksi payload & bypass untuk pentest.

freebeginner

HackTricks

Wiki teknik pentest & CTF mendetail.

freebeginner

Netcat

Swiss army knife untuk koneksi TCP/UDP.

freebeginner

SQLMap

Otomatisasi deteksi & eksploitasi SQL injection.

freeintermediate

Commix

Automated OS command injection exploitation.

freeintermediate

tplmap

Deteksi & eksploitasi server-side template injection.

freeadvanced

Metasploit

Framework exploitation paling populer di dunia.

freemiumadvanced

BeEF

Browser Exploitation Framework client-side.

freeintermediate

Cobalt Strike

Adversary simulation komersial untuk red team.

paidadvanced

Sliver

C2 framework open-source untuk red team modern.

freeadvanced

Mythic

C2 framework multi-platform berbasis kontainer.

freeadvanced

Havoc

Modern C2 framework open-source.

freeadvanced

Empire

Post-exploitation framework PowerShell & Python.

freeadvanced

Villain

C2 framework dengan reverse shell management.

freeintermediate

Impacket

Library Python untuk protokol Windows (SMB, Kerberos).

freeadvanced

NetExec

Penerus CrackMapExec untuk pentest jaringan Windows.

freeadvanced

BloodHound

Map Active Directory attack path via graph.

freeadvanced

Mimikatz

Tool ekstraksi credential Windows klasik.

freeadvanced

Rubeus

Kerberos abuse toolkit untuk red team.

freeadvanced

Certipy

Enumerate & abuse AD Certificate Services.

freeadvanced

Responder

LLMNR/NBT-NS poisoning untuk hash capture.

freeintermediate

evil-winrm

WinRM shell yang ergonomis untuk pentester.

freeintermediate

PowerSploit

Koleksi PowerShell modul post-exploitation.

freeadvanced

gophish

Open-source phishing framework untuk simulasi.

freeintermediate

evilginx2

Reverse-proxy phishing untuk MFA bypass simulasi.

freeadvanced

Caldera

Automated adversary emulation dari MITRE.

freeadvanced

Pacu

AWS exploitation framework (Rhino Security).

freeadvanced

SharpHound

Collector data BloodHound untuk AD.

freeadvanced

Seatbelt

Situational awareness host Windows.

freeintermediate

WinPEAS

Windows privilege escalation enumeration.

freebeginner

LinPEAS

Linux privilege escalation enumeration.

freebeginner

GTFOBins

Referensi binary Unix untuk bypass & privesc.

freebeginner

LOLBAS

Living-off-the-land Windows binaries reference.

freebeginner

PayloadsAllTheThings

Koleksi payload & bypass untuk pentest.

freebeginner

HackTricks

Wiki teknik pentest & CTF mendetail.

freebeginner

Donut

Convert executable jadi shellcode in-memory.

freeadvanced

Stratus Red Team

Emulasi teknik attack di cloud (DataDog).

freeintermediate

Peirates

Kubernetes penetration testing tool.

freeadvanced

RedEye

Visualisasi & timeline aktivitas C2 buat red team report.

freeintermediate

Adaptix C2

Open-source post-exploitation framework modular.

freeadvanced

PEzor

Open-source PE packer untuk evasion AV/EDR.

freeadvanced

ScareCrow

Payload framework bypass EDR untuk red team.

freeadvanced

Freeze

Payload toolkit untuk bypass userland EDR hook.

freeadvanced

Chisel

TCP/UDP tunnel cepat via HTTP, populer buat pivot.

freeintermediate

Ligolo-ng

Modern reverse tunneling untuk pivoting jaringan.

freeintermediate

gost

Secure tunneling multi-protocol GO Simple Tunnel.

freeintermediate

mitm6

IPv6 attack untuk Windows network (DHCPv6 hijack).

freeadvanced

hostapd-wpe

Rogue AP framework untuk testing klien WPA-Enterprise.

freeadvanced

Pwntools

Python library untuk CTF & exploit development.

freeadvanced

CrackMapExec

Swiss army knife untuk pentest Active Directory.

freeadvanced

ADRecon

Recon AD untuk extract konfigurasi & user.

freeintermediate

PurpleSharp

Adversary simulation tool untuk purple team.

freeadvanced

CALDERA

Automated adversary emulation dari MITRE.

freeadvanced

Stratus Red Team

Granular adversary emulation di AWS/Azure/GCP.

freeintermediate

Bloodhound CE

Community Edition BloodHound generasi baru untuk AD/AzureAD.

freeadvanced

AutoBloody

Auto-execute privesc path dari BloodHound.

freeadvanced

Mimikatz

Tool ekstraksi credential Windows klasik.

freeadvanced

hostapd-wpe

Rogue AP framework untuk testing klien WPA-Enterprise.

freeadvanced

PEzor

Open-source PE packer untuk evasion AV/EDR.

freeadvanced

Pwntools

Python library untuk CTF & exploit development.

freeadvanced

Caldera

Automated adversary emulation dari MITRE.

freeadvanced

PurpleSharp

Adversary simulation tool untuk purple team.

freeadvanced

CALDERA

Automated adversary emulation dari MITRE.

freeadvanced

Pacu

AWS exploitation framework (Rhino Security).

freeadvanced

Stratus Red Team

Emulasi teknik attack di cloud (DataDog).

freeintermediate

Peirates

Kubernetes penetration testing tool.

freeadvanced

Stratus Red Team

Granular adversary emulation di AWS/Azure/GCP.

freeintermediate

Password & Cracking

[17]

Wireless & Radio

[20]

Reverse Engineering & Forensics

[73]

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

PEzor

Open-source PE packer untuk evasion AV/EDR.

freeadvanced

Pwntools

Python library untuk CTF & exploit development.

freeadvanced

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

Ghidra

Reverse engineering framework dari NSA.

freeadvanced

IDA Free

Disassembler & debugger interaktif legendaris.

freemiumadvanced

Radare2

Framework reverse engineering CLI open-source.

freeadvanced

Cutter

GUI modern untuk radare2.

freeintermediate

x64dbg

Open-source debugger Windows untuk x86/x64.

freeadvanced

dnSpy

Debugger & decompiler .NET (fork dnSpyEx aktif).

freeadvanced

Frida

Dynamic instrumentation untuk app native & mobile.

freeadvanced

Objection

Runtime mobile exploration berbasis Frida.

freeintermediate

MobSF

Mobile Security Framework, analisis static & dynamic Android/iOS.

freeintermediate

apktool

Reverse engineering APK Android.

freeintermediate

Binwalk

Tool analisa dan ekstraksi firmware.

freeintermediate

Volatility

Framework analisa memory dump (Volatility3).

freeadvanced

Autopsy

Platform digital forensics berbasis Sleuth Kit.

freeintermediate

Sleuth Kit

Library forensik filesystem berbasis CLI.

freeadvanced

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

PEStudio

Analisis statis file PE untuk triase malware.

freemiumintermediate

CAPA

Identifikasi capability dari executable (Mandiant).

freeintermediate

Detect It Easy

Identifikasi packer & kompiler binary.

freebeginner

KAPE

Kroll Artifact Parser, triage forensik cepat.

freeintermediate

Plaso (log2timeline)

Bangun super-timeline forensik dari banyak sumber.

freeadvanced

FTK Imager

Tool imaging & preview forensik dari Exterro.

freebeginner

Eric Zimmerman Tools

Suite parser artifact Windows untuk DFIR.

freeintermediate

Velociraptor

Endpoint visibility & DFIR remote.

freeadvanced

ANY.RUN

Interactive sandbox malware berbasis cloud.

freemiumbeginner

Joe Sandbox

Sandbox malware multi-platform mendalam.

freemiumintermediate

Hybrid Analysis

Sandbox malware gratis (CrowdStrike Falcon).

freebeginner

pwndbg

GDB plugin untuk exploit dev & RE.

freeadvanced

GEF

GDB Enhanced Features untuk exploit dev.

freeadvanced

angr

Framework analisa binary simbolik.

freeadvanced

PE-bear

GUI multiplatform untuk analisis PE.

freeintermediate

Floss

Ekstraksi string obfuscated dari malware.

freeintermediate

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Brim / Zui

Desktop app eksplorasi PCAP & Zeek log.

freebeginner

PEzor

Open-source PE packer untuk evasion AV/EDR.

freeadvanced

Drozer

Android security assessment framework.

freeadvanced

APKLeaks

Scan APK untuk URI, endpoint, & secret.

freebeginner

Cuckoo Sandbox

Open-source automated malware analysis sandbox.

freeadvanced

Pwntools

Python library untuk CTF & exploit development.

freeadvanced

Velociraptor

Endpoint visibility & DFIR collection framework.

freeadvanced

Karton

Distributed malware analysis platform dari CERT Polska.

freeadvanced

GHIDRAthon

Plugin GHIDRA untuk scripting penuh dengan Python 3.

freeadvanced

BinDiff

Binary diffing untuk patch analysis & malware variant.

freeadvanced

Diaphora

Plugin IDA untuk binary diffing open-source.

freeadvanced

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

Volatility

Framework analisa memory dump (Volatility3).

freeadvanced

Autopsy

Platform digital forensics berbasis Sleuth Kit.

freeintermediate

Sleuth Kit

Library forensik filesystem berbasis CLI.

freeadvanced

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

PEStudio

Analisis statis file PE untuk triase malware.

freemiumintermediate

CAPA

Identifikasi capability dari executable (Mandiant).

freeintermediate

KAPE

Kroll Artifact Parser, triage forensik cepat.

freeintermediate

Plaso (log2timeline)

Bangun super-timeline forensik dari banyak sumber.

freeadvanced

FTK Imager

Tool imaging & preview forensik dari Exterro.

freebeginner

Eric Zimmerman Tools

Suite parser artifact Windows untuk DFIR.

freeintermediate

Velociraptor

Endpoint visibility & DFIR remote.

freeadvanced

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Brim / Zui

Desktop app eksplorasi PCAP & Zeek log.

freebeginner

Velociraptor

Endpoint visibility & DFIR collection framework.

freeadvanced

MobSF

Mobile Security Framework, analisis static & dynamic Android/iOS.

freeintermediate

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

ANY.RUN

Interactive sandbox malware berbasis cloud.

freemiumbeginner

Joe Sandbox

Sandbox malware multi-platform mendalam.

freemiumintermediate

Hybrid Analysis

Sandbox malware gratis (CrowdStrike Falcon).

freebeginner

Cuckoo Sandbox

Open-source automated malware analysis sandbox.

freeadvanced

Karton

Distributed malware analysis platform dari CERT Polska.

freeadvanced

Blue Team & Monitoring

[111]

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

tcpdump

CLI packet capture klasik untuk Unix.

freeintermediate

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Arkime (Moloch)

Indexed full packet capture skala besar.

freeadvanced

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

Caldera

Automated adversary emulation dari MITRE.

freeadvanced

PurpleSharp

Adversary simulation tool untuk purple team.

freeadvanced

CALDERA

Automated adversary emulation dari MITRE.

freeadvanced

Kismet

Wireless detector, sniffer, dan IDS.

freeintermediate

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

Volatility

Framework analisa memory dump (Volatility3).

freeadvanced

Autopsy

Platform digital forensics berbasis Sleuth Kit.

freeintermediate

Sleuth Kit

Library forensik filesystem berbasis CLI.

freeadvanced

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

PEStudio

Analisis statis file PE untuk triase malware.

freemiumintermediate

CAPA

Identifikasi capability dari executable (Mandiant).

freeintermediate

KAPE

Kroll Artifact Parser, triage forensik cepat.

freeintermediate

Plaso (log2timeline)

Bangun super-timeline forensik dari banyak sumber.

freeadvanced

FTK Imager

Tool imaging & preview forensik dari Exterro.

freebeginner

Eric Zimmerman Tools

Suite parser artifact Windows untuk DFIR.

freeintermediate

Velociraptor

Endpoint visibility & DFIR remote.

freeadvanced

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Brim / Zui

Desktop app eksplorasi PCAP & Zeek log.

freebeginner

Velociraptor

Endpoint visibility & DFIR collection framework.

freeadvanced

Wireshark

Packet analyzer untuk inspeksi traffic mendalam.

freeintermediate

tcpdump

CLI packet capture klasik untuk Unix.

freeintermediate

Kismet

Wireless detector, sniffer, dan IDS.

freeintermediate

Volatility

Framework analisa memory dump (Volatility3).

freeadvanced

Autopsy

Platform digital forensics berbasis Sleuth Kit.

freeintermediate

Sleuth Kit

Library forensik filesystem berbasis CLI.

freeadvanced

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

CyberChef

Web app untuk encoding, decoding, & analisis data.

freebeginner

PEStudio

Analisis statis file PE untuk triase malware.

freemiumintermediate

CAPA

Identifikasi capability dari executable (Mandiant).

freeintermediate

KAPE

Kroll Artifact Parser, triage forensik cepat.

freeintermediate

Plaso (log2timeline)

Bangun super-timeline forensik dari banyak sumber.

freeadvanced

FTK Imager

Tool imaging & preview forensik dari Exterro.

freebeginner

Eric Zimmerman Tools

Suite parser artifact Windows untuk DFIR.

freeintermediate

Snort

IDS/IPS open-source paling populer.

freeintermediate

Suricata

High-performance network IDS/IPS modern.

freeintermediate

Zeek

Network security monitor untuk traffic analysis.

freeadvanced

Wazuh

Platform XDR & SIEM open-source.

freeintermediate

OSSEC

Host-based IDS open-source.

freeintermediate

Security Onion

Distro Linux untuk threat hunting & monitoring.

freeintermediate

Elastic Security

SIEM & EDR di atas Elastic Stack.

freemiumintermediate

Splunk Free

Search & analytics log (versi free terbatas).

freemiumintermediate

Graylog

Log management & SIEM open-source.

freemiumintermediate

MISP

Platform threat intelligence sharing.

freeintermediate

TheHive

Platform incident response kolaboratif.

freeintermediate

OpenCTI

Platform cyber threat intelligence open-source.

freeintermediate

Velociraptor

Endpoint visibility & DFIR remote.

freeadvanced

Sigma

Format generik untuk detection rule SIEM.

freeintermediate

Chainsaw

Hunt cepat di Windows Event Log dengan Sigma.

freeintermediate

Hayabusa

Windows event log timeline & threat hunter.

freeintermediate

Atomic Red Team

Library tes adversary mapped ke MITRE ATT&CK.

freeintermediate

Caldera

Automated adversary emulation dari MITRE.

freeadvanced

osquery

OS sebagai database, query endpoint pakai SQL.

freeintermediate

Falco

Runtime threat detection untuk Linux & K8s.

freeintermediate

CrowdSec

IPS kolaboratif open-source.

freemiumbeginner

Loki (rule scanner)

Simple IOC & YARA scanner untuk IR (Florian Roth).

freebeginner

Sysmon

System monitor Microsoft untuk telemetry detail.

freeintermediate

Lynis

Audit keamanan & hardening sistem Unix.

freebeginner

VirusTotal

Aggregator scanner malware & threat intel.

freemiumbeginner

GreyNoise

Konteks tentang IP yang scan internet.

freemiumbeginner

NetworkMiner

Network forensic analyzer dari PCAP.

freemiumbeginner

Brim / Zui

Desktop app eksplorasi PCAP & Zeek log.

freebeginner

Arkime (Moloch)

Indexed full packet capture skala besar.

freeadvanced

ClamAV

Open-source antivirus engine.

freebeginner

chkrootkit

Pendeteksi rootkit untuk sistem Linux.

freebeginner

rkhunter

Rootkit hunter untuk sistem Unix.

freebeginner

OpenSCAP

Compliance & hardening scanner SCAP.

freeintermediate

Shuffle

SOAR open-source untuk otomasi SOC.

freemiumintermediate

Cortex

Observable analysis engine partner TheHive.

freemiumintermediate

MITRE ATT&CK Navigator

Visualisasi & anotasi matriks ATT&CK.

freebeginner

DFIR-IRIS

Incident response collaboration platform.

freeintermediate

Sigma HQ

Generic signature format untuk SIEM detection rules.

freeintermediate

VECTR

Tracking purple team exercise & detection coverage.

freemiumintermediate

PlexTrac

Platform reporting & remediasi untuk pentest team.

paidintermediate

PingCastle

Audit security posture Active Directory.

freemiumintermediate

PurpleSharp

Adversary simulation tool untuk purple team.

freeadvanced

CALDERA

Automated adversary emulation dari MITRE.

freeadvanced

Limacharlie

SecOps cloud platform untuk EDR & response.

freemiumintermediate

Vector

Observability data pipeline open-source.

freeintermediate

Fluentd

Unified logging layer untuk SIEM pipeline.

freeintermediate

Velociraptor

Endpoint visibility & DFIR collection framework.

freeadvanced

Cortex

Observable analyzer & responder pendamping TheHive.

freeintermediate

DefectDojo

Vulnerability management & DevSecOps tracker.

freemiumintermediate

Infection Monkey

Open-source breach & attack simulation tool.

freeintermediate

Adversary Emulation Library

Library skenario emulasi MITRE Engenuity TTP siap pakai.

freeintermediate

Detection Lab

Lab Active Directory siap pakai untuk latihan blue team.

freeintermediate

ATT&CK Navigator

Visualize coverage MITRE ATT&CK matrix kustom.

freebeginner

DECIDER by CISA

Tool CISA untuk mapping perilaku attacker ke ATT&CK.

freebeginner

Lynis

Audit keamanan & hardening sistem Unix.

freebeginner

OpenSCAP

Compliance & hardening scanner SCAP.

freeintermediate

PingCastle

Audit security posture Active Directory.

freemiumintermediate

DefectDojo

Vulnerability management & DevSecOps tracker.

freemiumintermediate

Infection Monkey

Open-source breach & attack simulation tool.

freeintermediate

Falco

Runtime threat detection untuk Linux & K8s.

freeintermediate

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

MISP

Platform threat intelligence sharing.

freeintermediate

OpenCTI

Platform cyber threat intelligence open-source.

freeintermediate

Sigma

Format generik untuk detection rule SIEM.

freeintermediate

VirusTotal

Aggregator scanner malware & threat intel.

freemiumbeginner

GreyNoise

Konteks tentang IP yang scan internet.

freemiumbeginner

Cortex

Observable analysis engine partner TheHive.

freemiumintermediate

MITRE ATT&CK Navigator

Visualisasi & anotasi matriks ATT&CK.

freebeginner

Sigma HQ

Generic signature format untuk SIEM detection rules.

freeintermediate

Cortex

Observable analyzer & responder pendamping TheHive.

freeintermediate

ATT&CK Navigator

Visualize coverage MITRE ATT&CK matrix kustom.

freebeginner

DECIDER by CISA

Tool CISA untuk mapping perilaku attacker ke ATT&CK.

freebeginner

Vulnerability Scanners

[79]

Sn1per

Automated attack surface scanner all-in-one.

freemiumintermediate

OWASP ZAP

Scanner keamanan web app open-source (OWASP).

freebeginner

Nikto

Pemindai cepat kerentanan pada web server.

freebeginner

Wapiti

Web vulnerability scanner open-source.

freebeginner

Nuclei

Scanner berbasis template YAML yang cepat.

freeintermediate

Arachni

Web application security scanner berfitur kaya.

freeintermediate

WPScan

Scanner kerentanan khusus WordPress.

freemiumbeginner

JoomScan

OWASP scanner kerentanan Joomla.

freebeginner

testssl.sh

Cek konfigurasi TLS/SSL service.

freebeginner

SSLyze

Analisis konfigurasi TLS server cepat.

freebeginner

ssh-audit

Audit konfigurasi SSH server & client.

freebeginner

Acunetix

Automated web application security scanner.

paidintermediate

Invicti

DAST enterprise untuk aplikasi web.

paidintermediate

Vulnetic AI

AI pentest agent otonom untuk recon & exploitasi.

freemiumintermediate

Nuclei Templates Editor

Editor visual & validator template Nuclei dari ProjectDiscovery.

freemiumintermediate

MobSF

Mobile Security Framework, analisis static & dynamic Android/iOS.

freeintermediate

Lynis

Audit keamanan & hardening sistem Unix.

freebeginner

OpenSCAP

Compliance & hardening scanner SCAP.

freeintermediate

PingCastle

Audit security posture Active Directory.

freemiumintermediate

DefectDojo

Vulnerability management & DevSecOps tracker.

freemiumintermediate

Infection Monkey

Open-source breach & attack simulation tool.

freeintermediate

OWASP ZAP

Scanner keamanan web app open-source (OWASP).

freebeginner

Nikto

Pemindai cepat kerentanan pada web server.

freebeginner

Wapiti

Web vulnerability scanner open-source.

freebeginner

MobSF

Mobile Security Framework, analisis static & dynamic Android/iOS.

freeintermediate

Nessus

Vulnerability scanner enterprise dari Tenable.

freemiumintermediate

OpenVAS / Greenbone

Vulnerability scanner open-source dari Greenbone.

freemiumintermediate

Nuclei

Scanner berbasis template YAML yang cepat.

freeintermediate

Trivy

Vulnerability scanner untuk container & IaC.

freebeginner

Grype

Scanner kerentanan untuk container images.

freebeginner

Arachni

Web application security scanner berfitur kaya.

freeintermediate

Vuls

Agent-less vulnerability scanner Linux/Cloud.

freeintermediate

Lynis

Audit keamanan & hardening sistem Unix.

freebeginner

Semgrep

Static analysis untuk kode (SAST) cepat & ramah dev.

freemiumbeginner

CodeQL

Semantic code analysis dari GitHub.

freeadvanced

Qualys Community

Vulnerability management cloud-based.

freemiumintermediate

Prowler

Audit keamanan AWS, Azure, GCP, & K8s.

freemiumintermediate

kube-bench

CIS Benchmark scanner untuk Kubernetes.

freebeginner

kube-hunter

Hunt security weakness di cluster K8s.

freeintermediate

Checkov

Static analysis Terraform, K8s, Helm, dll.

freemiumbeginner

Sn1per

Automated attack surface scanner all-in-one.

freemiumintermediate

WPScan

Scanner kerentanan khusus WordPress.

freemiumbeginner

JoomScan

OWASP scanner kerentanan Joomla.

freebeginner

testssl.sh

Cek konfigurasi TLS/SSL service.

freebeginner

SSLyze

Analisis konfigurasi TLS server cepat.

freebeginner

ssh-audit

Audit konfigurasi SSH server & client.

freebeginner

OpenSCAP

Compliance & hardening scanner SCAP.

freeintermediate

Kubescape

Security posture scanner Kubernetes.

freemiumbeginner

Terrascan

IaC static scanner untuk Terraform/K8s.

freebeginner

tfsec

Security scanner Terraform code.

freebeginner

Faraday

Collaborative penetration testing & vuln management.

freemiumintermediate

PingCastle

Audit security posture Active Directory.

freemiumintermediate

Bandit

SAST Python untuk security issue umum.

freebeginner

Brakeman

SAST khusus aplikasi Ruby on Rails.

freebeginner

Anchore

Container & image vulnerability scanner.

freemiumintermediate

OpenVAS

Open vulnerability assessment scanner.

freeintermediate

Qualys VMDR

Cloud vulnerability management enterprise.

paidadvanced

Rapid7 InsightVM

Vulnerability management dengan live dashboard.

paidintermediate

Acunetix

Automated web application security scanner.

paidintermediate

Invicti

DAST enterprise untuk aplikasi web.

paidintermediate

DefectDojo

Vulnerability management & DevSecOps tracker.

freemiumintermediate

Vulnetic AI

AI pentest agent otonom untuk recon & exploitasi.

freemiumintermediate

AttackerKB

Komunitas penilaian eksploitabilitas CVE oleh Rapid7.

freebeginner

Infection Monkey

Open-source breach & attack simulation tool.

freeintermediate

Nuclei Templates Editor

Editor visual & validator template Nuclei dari ProjectDiscovery.

freemiumintermediate

Trivy

Vulnerability scanner untuk container & IaC.

freebeginner

Grype

Scanner kerentanan untuk container images.

freebeginner

Vuls

Agent-less vulnerability scanner Linux/Cloud.

freeintermediate

Qualys Community

Vulnerability management cloud-based.

freemiumintermediate

Prowler

Audit keamanan AWS, Azure, GCP, & K8s.

freemiumintermediate

kube-bench

CIS Benchmark scanner untuk Kubernetes.

freebeginner

kube-hunter

Hunt security weakness di cluster K8s.

freeintermediate

Checkov

Static analysis Terraform, K8s, Helm, dll.

freemiumbeginner

Kubescape

Security posture scanner Kubernetes.

freemiumbeginner

Terrascan

IaC static scanner untuk Terraform/K8s.

freebeginner

tfsec

Security scanner Terraform code.

freebeginner

Anchore

Container & image vulnerability scanner.

freemiumintermediate

Qualys VMDR

Cloud vulnerability management enterprise.

paidadvanced

AttackerKB

Komunitas penilaian eksploitabilitas CVE oleh Rapid7.

freebeginner

Cloud & Container Security

[49]

Cloudlist

List aset cloud lintas provider untuk attack surface.

freebeginner

Pacu

AWS exploitation framework (Rhino Security).

freeadvanced

Stratus Red Team

Emulasi teknik attack di cloud (DataDog).

freeintermediate

Peirates

Kubernetes penetration testing tool.

freeadvanced

Stratus Red Team

Granular adversary emulation di AWS/Azure/GCP.

freeintermediate

Falco

Runtime threat detection untuk Linux & K8s.

freeintermediate

Trivy

Vulnerability scanner untuk container & IaC.

freebeginner

Grype

Scanner kerentanan untuk container images.

freebeginner

Vuls

Agent-less vulnerability scanner Linux/Cloud.

freeintermediate

Qualys Community

Vulnerability management cloud-based.

freemiumintermediate

Prowler

Audit keamanan AWS, Azure, GCP, & K8s.

freemiumintermediate

kube-bench

CIS Benchmark scanner untuk Kubernetes.

freebeginner

kube-hunter

Hunt security weakness di cluster K8s.

freeintermediate

Checkov

Static analysis Terraform, K8s, Helm, dll.

freemiumbeginner

Kubescape

Security posture scanner Kubernetes.

freemiumbeginner

Terrascan

IaC static scanner untuk Terraform/K8s.

freebeginner

tfsec

Security scanner Terraform code.

freebeginner

Anchore

Container & image vulnerability scanner.

freemiumintermediate

Qualys VMDR

Cloud vulnerability management enterprise.

paidadvanced

Falco

Runtime threat detection untuk Linux & K8s.

freeintermediate

Trivy

Vulnerability scanner untuk container & IaC.

freebeginner

Grype

Scanner kerentanan untuk container images.

freebeginner

Vuls

Agent-less vulnerability scanner Linux/Cloud.

freeintermediate

Qualys Community

Vulnerability management cloud-based.

freemiumintermediate

Prowler

Audit keamanan AWS, Azure, GCP, & K8s.

freemiumintermediate

ScoutSuite

Multi-cloud security auditing tool.

freeintermediate

Pacu

AWS exploitation framework (Rhino Security).

freeadvanced

kube-bench

CIS Benchmark scanner untuk Kubernetes.

freebeginner

kube-hunter

Hunt security weakness di cluster K8s.

freeintermediate

Checkov

Static analysis Terraform, K8s, Helm, dll.

freemiumbeginner

CloudSploit

Cloud security posture mgmt open-source.

freeintermediate

TruffleHog

Cari secret leak di git, S3, dll.

freemiumbeginner

gitleaks

Scan repo git untuk credential leak.

freebeginner

Stratus Red Team

Emulasi teknik attack di cloud (DataDog).

freeintermediate

Peirates

Kubernetes penetration testing tool.

freeadvanced

Kubescape

Security posture scanner Kubernetes.

freemiumbeginner

Terrascan

IaC static scanner untuk Terraform/K8s.

freebeginner

tfsec

Security scanner Terraform code.

freebeginner

Steampipe

Query cloud, SaaS, & API pakai SQL.

freeintermediate

CloudGoat

Vulnerable-by-design AWS environment.

freeintermediate

Anchore

Container & image vulnerability scanner.

freemiumintermediate

Clair

Static container vuln analysis dari CoreOS.

freeintermediate

Qualys VMDR

Cloud vulnerability management enterprise.

paidadvanced

Cloudlist

List aset cloud lintas provider untuk attack surface.

freebeginner

Syft

SBOM generator untuk container & filesystem.

freebeginner

kdigger

Context discovery tool untuk pod K8s.

freeintermediate

Stratus Red Team

Granular adversary emulation di AWS/Azure/GCP.

freeintermediate

TruffleHog

Cari secret leak di git, S3, dll.

freemiumbeginner

gitleaks

Scan repo git untuk credential leak.

freebeginner

Threat Intel & Sandboxing

[48]

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

ANY.RUN

Interactive sandbox malware berbasis cloud.

freemiumbeginner

Joe Sandbox

Sandbox malware multi-platform mendalam.

freemiumintermediate

Hybrid Analysis

Sandbox malware gratis (CrowdStrike Falcon).

freebeginner

Cuckoo Sandbox

Open-source automated malware analysis sandbox.

freeadvanced

Karton

Distributed malware analysis platform dari CERT Polska.

freeadvanced

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

MISP

Platform threat intelligence sharing.

freeintermediate

OpenCTI

Platform cyber threat intelligence open-source.

freeintermediate

Sigma

Format generik untuk detection rule SIEM.

freeintermediate

VirusTotal

Aggregator scanner malware & threat intel.

freemiumbeginner

GreyNoise

Konteks tentang IP yang scan internet.

freemiumbeginner

Cortex

Observable analysis engine partner TheHive.

freemiumintermediate

MITRE ATT&CK Navigator

Visualisasi & anotasi matriks ATT&CK.

freebeginner

Sigma HQ

Generic signature format untuk SIEM detection rules.

freeintermediate

Cortex

Observable analyzer & responder pendamping TheHive.

freeintermediate

ATT&CK Navigator

Visualize coverage MITRE ATT&CK matrix kustom.

freebeginner

DECIDER by CISA

Tool CISA untuk mapping perilaku attacker ke ATT&CK.

freebeginner

AttackerKB

Komunitas penilaian eksploitabilitas CVE oleh Rapid7.

freebeginner

YARA

Pola pattern-matching untuk klasifikasi malware.

freeintermediate

MISP

Platform threat intelligence sharing.

freeintermediate

OpenCTI

Platform cyber threat intelligence open-source.

freeintermediate

Sigma

Format generik untuk detection rule SIEM.

freeintermediate

VirusTotal

Aggregator scanner malware & threat intel.

freemiumbeginner

ANY.RUN

Interactive sandbox malware berbasis cloud.

freemiumbeginner

Joe Sandbox

Sandbox malware multi-platform mendalam.

freemiumintermediate

Hybrid Analysis

Sandbox malware gratis (CrowdStrike Falcon).

freebeginner

MalwareBazaar

Repository sample malware dari abuse.ch.

freebeginner

AbuseIPDB

Database IP berbahaya yang dilaporkan komunitas.

freemiumbeginner

AlienVault OTX

Open Threat Exchange, feed indikator komunitas.

freebeginner

GreyNoise

Konteks tentang IP yang scan internet.

freemiumbeginner

URLhaus

Database URL malware (abuse.ch).

freebeginner

Cortex

Observable analysis engine partner TheHive.

freemiumintermediate

MITRE ATT&CK Navigator

Visualisasi & anotasi matriks ATT&CK.

freebeginner

PhishTank

Database URL phishing komunitas.

freebeginner

OpenPhish

Feed URL phishing real-time.

freemiumbeginner

ThreatFox

IOC sharing platform dari abuse.ch.

freebeginner

MalwareBazaar Feeds

Sample feed malware dengan API.

freebeginner

Cuckoo Sandbox

Open-source automated malware analysis sandbox.

freeadvanced

Triage by Hatching

Cloud malware sandbox dengan high-volume coverage.

freemiumbeginner

Sigma HQ

Generic signature format untuk SIEM detection rules.

freeintermediate

Cortex

Observable analyzer & responder pendamping TheHive.

freeintermediate

Karton

Distributed malware analysis platform dari CERT Polska.

freeadvanced

PolySwarm

Crowdsourced threat intelligence & malware scanning.

freemiumbeginner

AttackerKB

Komunitas penilaian eksploitabilitas CVE oleh Rapid7.

freebeginner

Yeti Platform

Open-source threat intel platform untuk IOC.

freeintermediate

ATT&CK Navigator

Visualize coverage MITRE ATT&CK matrix kustom.

freebeginner

DECIDER by CISA

Tool CISA untuk mapping perilaku attacker ke ATT&CK.

freebeginner

OSINT for Pentesters

[26]

Nmap

Port scanner & pemetaan jaringan, standar industri.

freebeginner

Subfinder

Subdomain enumeration pasif dari banyak sumber.

freebeginner

Amass

Pemetaan attack surface & subdomain (OWASP).

freeintermediate

Smap

Drop-in Nmap mirror tanpa kirim paket (pakai Shodan).

freebeginner

dnstwist

Cari typosquatting & lookalike domain.

freebeginner

Fofa

Cyberspace asset search engine populer di Asia.

freemiumbeginner

Waybackurls

Ambil URL historis dari Wayback Machine.

freebeginner

GAU

Get All URLs dari arsip publik (gau).

freebeginner

TruffleHog

Cari secret leak di git, S3, dll.

freemiumbeginner

gitleaks

Scan repo git untuk credential leak.

freebeginner

Nmap

Port scanner & pemetaan jaringan, standar industri.

freebeginner

Subfinder

Subdomain enumeration pasif dari banyak sumber.

freebeginner

Amass

Pemetaan attack surface & subdomain (OWASP).

freeintermediate

Smap

Drop-in Nmap mirror tanpa kirim paket (pakai Shodan).

freebeginner

Waybackurls

Ambil URL historis dari Wayback Machine.

freebeginner

GAU

Get All URLs dari arsip publik (gau).

freebeginner

TruffleHog

Cari secret leak di git, S3, dll.

freemiumbeginner

gitleaks

Scan repo git untuk credential leak.

freebeginner

Shodan

Search engine perangkat terhubung internet.

freemiumbeginner

Censys

Search engine host, sertifikat, & layanan.

freemiumbeginner

FOFA

Cyberspace search engine alternatif Shodan.

freemiumbeginner

ZoomEye

Cyberspace search engine (Knownsec).

freemiumbeginner

Hunter.io

Cari email berdasarkan domain perusahaan.

freemiumbeginner

GitHub Dorks

Operator pencarian khusus untuk leak di GitHub.

freebeginner

dnstwist

Cari typosquatting & lookalike domain.

freebeginner

Fofa

Cyberspace asset search engine populer di Asia.

freemiumbeginner