Promote your tool

Showcase your cybersecurity solutions to a global audience!

> Featured this week

WADComs
featured
WADComs

Interactive cheat sheet with a curated list of offensive security tools and their commands.

EndPointer
featured
EndPointer

An extension that auto extracts URLs from the current webpage and JS files.

ShuckNT
featured
ShuckNT

Dowgrade, convert, dissect and shuck authentication token based on Data Encryption Standard.

al-khaser
featured
al-khaser

Public malware techniques used in the wild: virtual machine, emulation, debuggers.

KeePwn
featured
KeePwn

A python script to help red teamers discover KeePass instances and extract secrets.

> Last added

MSSQLand
MSSQLand

Navigate and conquer Microsoft SQL Server servers and their linked instances.

JS Recon Buddy
JS Recon Buddy

A passive browser extension to find secrets, endpoints and XSS sinks in JS and HTML.

grype
grype

A vulnerability scanner for container images and filesystems.

jwt-cracker
jwt-cracker

Simple JWT token brute force cracker.

server-side-prototype-pollution
server-side-prototype-pollution

Identifies server-side prototype pollution vulnerabilities.

prototype-pollution-exploits
prototype-pollution-exploits

Prototype Pollution exploits collection.

ppmap
ppmap

Exploitation tool which leverages client-side Prototype Pollution to XSS.

SayHello
SayHello

Improved version of SayCheese, designed to capture images via social engineering.

SayCheese
SayCheese

Grab target's webcam shots by link.

SafeLine
SafeLine

A self-hosted WAF to protect web applications from cyber attacks.