FAQ

ZION OFFSEC is an elite marketplace and community for offensive security professionals. We provide weaponized tools, exploit frameworks, red team infrastructure, and educational resources for authorized penetration testing and security research.

All tools and resources are provided strictly for authorized security testing, research, and educational purposes. Users are responsible for ensuring they have proper authorization before using any tools. Unauthorized access to computer systems is illegal in most jurisdictions.

Our platform is designed for professional penetration testers, red team operators, security researchers, bug bounty hunters, and cybersecurity students. All users must agree to our Terms of Service and responsible use policy.

Register an account, browse the arsenal catalog, and explore our free tools like the Decoder and Forge. For premium tools, add items to your cart and complete checkout. Your license keys will be available in your dashboard.

We offer exploit frameworks, zero-day packages, red team toolkits, malware development kits, evasion tools, OSINT platforms, network analysis suites, and educational training materials. Each product includes documentation and support.

After purchase, license keys are generated and available in your Orders page. Keys are tied to your account and can be used to activate the corresponding tools. Most licenses are perpetual with 12 months of updates included.

Due to the digital nature of our products, refunds are handled on a case-by-case basis. If a tool does not function as described, contact support within 48 hours of purchase with details of the issue.

Yes. Contact us for volume licensing, team deployments, and custom enterprise packages. We offer dedicated support channels and priority updates for enterprise clients.

We follow strict data minimization principles. We collect only what is necessary for account operation. Passwords are hashed with bcrypt. We accept PGP-encrypted communications and recommend using secure email providers. See our Privacy Policy for full details.

Yes. We accept Bitcoin (BTC) and Monero (XMR) for maximum privacy. Traditional payment methods are also available through our secure payment processor.

Absolutely. We do not require real names for account registration. Your callsign/username is your identity on the platform. We recommend using a secure email provider for registration.

Our Warrant Canary is a transparency mechanism. It is a signed statement that we have NOT received any secret government subpoenas or gag orders. If the canary disappears or is not updated, it may indicate we have been compelled to comply with such an order. Check it regularly.

The Decoder is our built-in encoding/decoding Swiss knife. It supports Base64, URL encoding, hex, ROT13, HTML entities, JWT decoding, hash generation, and more — all processed client-side for maximum privacy. No data leaves your browser.

La Fragua is our payload workshop where you can generate, encode, and obfuscate payloads for various platforms. It includes reverse shell generators, payload encoders, and obfuscation tools — all running client-side.

Our browser-based packet analysis tool lets you inspect network captures, decode protocols, and analyze traffic patterns. Upload PCAP files for instant visualization and protocol breakdown.

Operators earn reputation through purchases, forum participation, tool reviews, and community contributions. Rankings are displayed on the leaderboard with badges and levels. Top operators get early access to new releases and exclusive tools.

Use the Contact page to reach our support team. For urgent issues, use Telegram (@zionoffsec). Premium customers get priority support with response times under 12 hours.

Yes! We welcome contributions from the community. Contact us with details about your tool or research. Accepted contributions earn reputation points and may qualify for revenue sharing.

Yes. If you find a vulnerability in our platform, report it through the Contact page with subject "Vulnerability Report". Valid reports are rewarded with account credit and recognition on our Hall of Fame.

Follow us on Telegram for real-time updates, check the Forum for community discussions, and visit the changelog in the Documentation section for product updates.