A front-end JavaScript toolkit for creating DNS rebinding attacks.
created at June 19, 2018, 2:06 a.m.
JShell - Get a JavaScript shell with XSS.
created at Feb. 26, 2018, 1:40 p.m.
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
created at Dec. 13, 2017, 11:49 p.m.
🎯 Open Redirect Payload List
created at Aug. 15, 2019, 3:29 p.m.
🔐 Tutorial of setting up Security for your API with one way authentication with TLS/SSL and mutual authentication for a java based web server and a client with both Spring Boot. Different clients are provided such as Apache HttpClient, OkHttp, Spring RestTemplate, Spring WebFlux WebClient Jetty and Netty, the old and the new JDK HttpClient, the old and the new Jersey Client, Google HttpClient, Unirest, Retrofit, Feign, Methanol, vertx, Scala client Finagle, Featherbed, Dispatch Reboot, AsyncHttpClient, Sttp, Akka, Requests Scala, Http4s Blaze, Kotlin client Fuel, http4k, Kohttp and ktor. Also other server examples are available such as jersey with grizzly. Also gRPC, WebSocket and ElasticSearch examples are included
created at Nov. 11, 2018, 7:07 p.m.
List DTDs and generate XXE payloads using those local DTDs.
created at July 15, 2019, 8:13 p.m.
A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)
created at April 1, 2018, 12:11 a.m.
Scan your code for security misconfiguration, search for passwords and secrets.
created at Feb. 21, 2017, 8:06 p.m.
Auditing for TLS certificates.
created at May 20, 2014, 5:03 p.m.
🎯 XML External Entity (XXE) Injection Payload List
created at Nov. 19, 2019, 5:04 a.m.
The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
created at Aug. 21, 2018, 5:49 a.m.
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.
created at Nov. 14, 2016, 4:23 p.m.