RedTeam.Blue

API Security

APIsec

APIsec detects real API risks legacy scanners miss, integrated into your pipeline.

Marcos Henrique

☆

API Security

akto

Akto uses AI to automate API security across the entire DevSecOps pipeline.

Marcos Henrique

☆

Web Application Security

aikido

DAST tool for monitoring apps/APIs to detect OWASP risks like XSS, SQLi, and CSRF.

Marcos Henrique

☆

Vulnerability Scanning

Vuls

Agent-less vulnerability scanner for Linux/FreeBSD, written in Go.

Marcos Henrique

☆

Reconnaissance and OSINT

getallurls

Fetches known URLs for a domain from OTX, Wayback, Common Crawl, and URLScan.

Marcos Henrique

☆

Security Awareness

void

macOS domain blocker that prevents access to distracting sites using pf firewall rules.

Marcos Henrique

☆

Web Application Security

HTTP Observatory

Scanner that checks websites for compliance with recommended security best practices.

Marcos Henrique

☆

AI Security

qwiet

AI AppSec agents that scan and fix code vulnerabilities instantly.

Marcos Henrique

☆

DevSecOps Tools

vim-plug

Intelligent terminal for developers focused on productivity and collaboration.

Marcos Henrique

☆

Reconnaissance and OSINT

TLDFinder

Streamlined tool to discover private TLDs for security research purposes.

Marcos Henrique

☆

Reconnaissance and OSINT

cdncheck

Identifies technologies linked to DNS/IP addresses for infrastructure reconnaissance.

Marcos Henrique

☆

Reconnaissance and OSINT

asnmap

Go tool to quickly map organization networks using ASN information.

Marcos Henrique

☆

Threat Intelligence

useragent

Comprehensive, categorized collection of User Agents for analysis and fingerprinting.

Marcos Henrique

☆

DevSecOps Tools

DSL

Library to create and evaluate expressions to filter, compare, or transform data sets.

Marcos Henrique

☆

Reconnaissance and OSINT

shuffledns

Massdns wrapper for subdomain bruteforce and resolution with wildcard handling support.

Marcos Henrique

☆

DevSecOps Tools

notify

Go tool to stream tool outputs or files to multiple supported platforms.

Marcos Henrique

☆

Web Application Security

cleanhttp

Library to detect and filter wildcard HTTP servers using signature-based rules.

Marcos Henrique

☆

AI Security

AIx

CLI tool to interact securely and efficiently with Large Language Model APIs.

Marcos Henrique

☆

Web Application Security

Interactsh

Tool to detect out-of-band (OOB) interactions triggered by vulnerabilities.

Marcos Henrique

☆

Web Application Security

httpx

Fast HTTP toolkit for reliable probing using multi-threading and retryable HTTP requests.

Marcos Henrique

☆

Vulnerability Scanning

nuclei

Fast vulnerability scanner using YAML templates for accurate and customizable detection.

Marcos Henrique

☆

Reconnaissance and OSINT

Awesome Search Queries

Community-driven list of OSINT queries for multiple search engines and research purposes.

Marcos Henrique

☆

Web Application Security

rawhttp

Go library for sending HTTP requests with full control and minimal validation.

Marcos Henrique

☆

DevSecOps Tools

anew

Appends unique lines to a file from stdin, skipping duplicates.

Marcos Henrique

☆

Web Application Security

meg

Tool for fetching many URLs while avoiding flooding individual servers.

Marcos Henrique

☆

Web Application Security

ffuf

Fast web fuzzer for discovering hidden files and directories in web applications.

Marcos Henrique

☆

Reconnaissance and OSINT

fff

Fast URL fetcher sending parallel requests at intervals without waiting for responses.

Marcos Henrique

☆

Reconnaissance and OSINT

waybackurls

Fetches historical URLs for domains from the Wayback Machine for surface analysis.

Marcos Henrique

☆