Offsec & AI Agent Tool Intelligence

// LATEST

Developer Tools

Mining Apache's server-status: A Security Researcher's Field Guide

By Rob Ragan ★ 24 Unknown May 12, 2026

Automation

LazyRecon: The Bash Script That Chains 12 Security Tools Into One Reconnaissance Pipeline

By Rob Ragan ★ 2.0k Unknown May 12, 2026

Developer Tools

genkiroid/cert: Inspect TLS Certificates Without the OpenSSL Ceremony

By Rob Ragan ★ 240 Unknown May 12, 2026

Automation

Hunting .DS_Store Files at Scale: How internetwache's Scanner Exploits macOS Metadata Leaks

By Rob Ragan ★ 35 Unknown May 12, 2026

Developer Tools

JSScanner: The Bug Bounty Hunter's Swiss Army Knife for JavaScript Reconnaissance

By Rob Ragan ★ 273 Unknown May 12, 2026

Developer Tools

ffufplus: When Shell Scripts Make Better Security Tools Than Frameworks

By Rob Ragan ★ 191 Unknown May 12, 2026

Cybersecurity

Jaeles: Building a Signature-Based Web Scanner That Speaks YAML

By Rob Ragan ★ 2.3k Unknown May 12, 2026

Cybersecurity

Building Custom Query String Fuzzers: Inside qsfuzz's Rule-Based Vulnerability Detection

By Rob Ragan ★ 302 Unknown May 12, 2026

Automation

Inception: The Web Scanner That Deliberately Slows Down to Evade WAF Detection

By Rob Ragan ★ 384 Unknown May 12, 2026

Cybersecurity

Inside Nuclei Templates: How 12,000 YAML Files Became the Lingua Franca of Vulnerability Detection

By Rob Ragan ★ 12.3k Unknown May 12, 2026

Cybersecurity

Inside Nuclei: How YAML Templates Became a Crowdsourced Vulnerability Database

By Rob Ragan ★ 28.3k Unknown May 12, 2026

Automation

Spartan: The Shell Script That Chains Your Recon Tools (And Why That's Both Good and Bad)

By Rob Ragan ★ 194 Unknown May 12, 2026

Cybersecurity

Inside pedrib/PoC: A Master Class in Vulnerability Research and Exploit Development

By Rob Ragan ★ 855 Unknown May 12, 2026

Cybersecurity

Building a GitHub Trending Bot: What 115 Stars Taught Us About Scraping, Storage, and Social Growth

By Rob Ragan ★ 115 Unknown May 12, 2026

Cybersecurity

GitHacker: Exploiting Exposed .git Directories When Directory Listings Are Disabled

By Rob Ragan ★ 1.6k Unknown May 12, 2026

Developer Tools

cidrmerge: The 50-Line Python Script That Cleans Up Network ACLs

By Rob Ragan ★ 37 Unknown May 12, 2026

Developer Tools

subjs: How a 300-Line Go Tool Became Essential in the Bug Bounty Toolkit

By Rob Ragan ★ 841 Unknown May 12, 2026

Cybersecurity

gau: Mining Web Archives for Security Reconnaissance Without Touching the Target

By Rob Ragan ★ 4.9k Unknown May 12, 2026

Developer Tools

urlscan-go: A Minimalist Go Client for Automated URL Threat Analysis

By Rob Ragan ★ 8 Unknown May 12, 2026

Cybersecurity

OneForAll: The Subdomain Enumeration Framework That Aggregates 100+ Data Sources

By Rob Ragan ★ 9.8k Unknown May 12, 2026

Automation

Cheetah: How Parallel Password Submission Breaks Webshell Brute-Force Performance Barriers

By Rob Ragan ★ 654 Unknown May 12, 2026

Cybersecurity

httpx: The Swiss Army Knife of HTTP Reconnaissance That Actually Scales

By Rob Ragan ★ 9.9k Unknown May 12, 2026

Cybersecurity

GitHub as an Attack Surface: Automating Reconnaissance with github-search

By Rob Ragan ★ 1.5k Unknown May 12, 2026

Cybersecurity

o365spray: How Endpoint Diversity Beats Microsoft's Authentication Rate Limiting

By Rob Ragan ★ 1.0k Unknown May 12, 2026