A vast collection of security tools for bug bounty, pentest and red teaming
Featured tools this week
UI-based tool with multiple techniques for attacking and enumerating Azure and AWS environment.
PortSwigger WebSecurity Academy
Free, online web security training from the creators of Burp Suite.
Freddy Deserialization Bug Finder
A Burp Suite extension to aid in detecting and exploiting serialisation libraries/APIs.
A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks.
C2 and proxy designed to help in the exploitation of XSS and malicious Service Workers.