Fast and customizable vulnerability scanner based on simple YAML based DSL.
updated at April 28, 2024, 1:15 p.m.
The Offensive Manual Web Application Penetration Testing Framework.
updated at April 28, 2024, 12:53 p.m.
The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
updated at April 28, 2024, 12:43 p.m.
A fast sub domain brute tool for pentesters
updated at April 28, 2024, 11:24 a.m.
Automated All-in-One OS Command Injection Exploitation Tool.
updated at April 28, 2024, 11:10 a.m.
The Browser Exploitation Framework Project
updated at April 28, 2024, 11:07 a.m.
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
updated at April 28, 2024, 10:54 a.m.
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
updated at April 28, 2024, 10:02 a.m.
🎯 SQL Injection Payload List
updated at April 28, 2024, 9:50 a.m.
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
updated at April 28, 2024, 9:50 a.m.
Incredibly fast crawler designed for OSINT.
updated at April 28, 2024, 9:34 a.m.
Analyze the security of any domain by finding all the information possible. Made in python.
updated at April 28, 2024, 9:31 a.m.
A python script that finds endpoints in JavaScript files
updated at April 28, 2024, 9:22 a.m.
JShell - Get a JavaScript shell with XSS.
updated at April 28, 2024, 9:14 a.m.