A script that inspects multi-byte character sets looking for characters with specific user-defined properties
updated at March 22, 2023, 1:45 a.m.
Parse NTLM challenge messages over HTTP and SMB
updated at Jan. 4, 2024, 4:39 p.m.
A simple tool to convert the IP to a DWORD IP
updated at Feb. 18, 2024, 2:17 p.m.
A front-end JavaScript toolkit for creating DNS rebinding attacks.
updated at March 12, 2024, 1:06 p.m.
Pillage web accessible GIT, HG and BZR repositories
updated at March 15, 2024, 1:29 a.m.
A free software to find the components installed in Joomla CMS, built out of the ashes of Joomscan.
updated at March 18, 2024, 3:27 p.m.
🔐 Tutorial of setting up Security for your API with one way authentication with TLS/SSL and mutual authentication for a java based web server and a client with both Spring Boot. Different clients are provided such as Apache HttpClient, OkHttp, Spring RestTemplate, Spring WebFlux WebClient Jetty and Netty, the old and the new JDK HttpClient, the old and the new Jersey Client, Google HttpClient, Unirest, Retrofit, Feign, Methanol, vertx, Scala client Finagle, Featherbed, Dispatch Reboot, AsyncHttpClient, Sttp, Akka, Requests Scala, Http4s Blaze, Kotlin client Fuel, http4k, Kohttp and ktor. Also other server examples are available such as jersey with grizzly. Also gRPC, WebSocket and ElasticSearch examples are included
updated at April 2, 2024, 5:40 p.m.
vulnerable web application for training
updated at April 4, 2024, 8:38 a.m.
Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
updated at April 5, 2024, 2:38 p.m.
A multiple reverse shell session/client manager via terminal
updated at April 8, 2024, 9:04 a.m.
Nano is a family of PHP web shells which are code golfed for stealth.
updated at April 9, 2024, 6:23 a.m.
Scan your code for security misconfiguration, search for passwords and secrets.
updated at April 13, 2024, 7:20 a.m.