CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
created at July 17, 2018, 12:21 a.m.
A python script that finds endpoints in JavaScript files
created at June 9, 2017, 11:50 a.m.
Rip web accessible (distributed) version control systems: SVN/GIT/HG...
created at Oct. 23, 2012, 4:55 a.m.
Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
created at Jan. 10, 2016, 10:41 p.m.
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.
created at Nov. 14, 2016, 4:23 p.m.
The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
created at Aug. 21, 2018, 5:49 a.m.
Scan your code for security misconfiguration, search for passwords and secrets.
created at Feb. 21, 2017, 8:06 p.m.
Nano is a family of PHP web shells which are code golfed for stealth.
created at May 25, 2018, 3:17 p.m.
JShell - Get a JavaScript shell with XSS.
created at Feb. 26, 2018, 1:40 p.m.