Resources
π Herm’s Cyber Arsenal
Tools, cheat sheets, and tactical utilities from Offensive Security and the wider Red Team grid.
π₯ Offensive Security Downloads
- Kali Linux ISO β The gold standard in penetration testing distros.
- Kali NetHunter β Mobile pentest platform for Android.
- Exploit Database β Public exploits curated by OffSec.
- Proving Grounds β Online practice labs (paid/free tiers).
- OffSec PDF Courseware β Available to enrolled students.
- Kali Tools Index β Full catalog of built-in Kali tools.
- OffSec GitHub β Scripts, tools, and legacy repos.
- Kali ISO Builder β Build your own ISO with custom tools.
- Kali ARM Images β Raspberry Pi, Pinebook, etc.
- Kali VMs β Preconfigured for VMware/VirtualBox.
π οΈ External Red Team Tools
- Burp Suite β Web app testing proxy. Get the Pro if you can.
- SecLists β Payloads, usernames, fuzz lists, DNS bruteforce.
- ffuf β Fast web fuzzer (Go-based).
- Nmap β The reconnaissance king.
- Amass β Subdomain enumeration & intel mapping.
- BloodHound β AD recon and path-finding.
- PayloadsAllTheThings β Exploits sorted by vulnerability type.
- CrackMapExec β Swiss army knife for AD and SMB pillaging.
- Metasploit β The OG post-exploitation framework.
- Responder β LLMNR/NBT-NS/MDNS pwnage and credential capture.
Need more? Hit herm@t3h0n.com or check out my GitHub arsenal.