Promote your tool

Boost your visibility among cybersecurity professionals and enthusiasts!

More infos

> Featured this week

wordlistctl
featured
wordlistctl

Fetch, install and search wordlist archives from websites and torrent peers.

Juumla
featured
Juumla

Identify Joomla version, scan for vulnerabilities and sensitive files.

DVCA
featured
DVCA

Damn vulnerable cloud application.

GraphQL Threat Matrix
featured
GraphQL Threat Matrix

Threat framework to research security gaps in GraphQL implementations.

ezXSS
featured
ezXSS

An easy way for penetration testers and bug bounty hunters to test (blind) XSS.

> Last added

MSSQLand
MSSQLand

Navigate and conquer Microsoft SQL Server servers and their linked instances.

JS Recon Buddy
JS Recon Buddy

A passive browser extension to find secrets, endpoints and XSS sinks in JS and HTML.

grype
grype

A vulnerability scanner for container images and filesystems.

jwt-cracker
jwt-cracker

Simple JWT token brute force cracker.

server-side-prototype-pollution
server-side-prototype-pollution

Identifies server-side prototype pollution vulnerabilities.

prototype-pollution-exploits
prototype-pollution-exploits

Prototype Pollution exploits collection.

ppmap
ppmap

Exploitation tool which leverages client-side Prototype Pollution to XSS.

SayHello
SayHello

Improved version of SayCheese, designed to capture images via social engineering.

SayCheese
SayCheese

Grab target's webcam shots by link.

SafeLine
SafeLine

A self-hosted WAF to protect web applications from cyber attacks.