Featured this week

nuclei-wordfence-cve
featured
nuclei-wordfence-cve

Collection of Nuclei templates dedicated to WordPress core, plugins and themes vulnerabilities.

AzureADLateralMovement
featured
AzureADLateralMovement

Lateral movement graph for Azure Active Directory.

Paros Proxy
featured
Paros Proxy

HTTP(S) proxy for assessing web application vulnerability.

espionage
featured
espionage

Collects informations related to domains whois, history, dns records and more.

JWT cracker
featured
JWT cracker

JWT brute force cracker written in C.

JWT Key ID Injector
featured
JWT Key ID Injector

Simple python script to check against hypothetical JWT vulnerability.

secret-bridge
featured
secret-bridge

Monitors Github for leaked secrets.

off-by-slash
featured
off-by-slash

Burp extension to detect alias traversal via NGINX misconfiguration at scale.

fingerprintx
featured
fingerprintx

Standalone utility for service discovery on open ports!

SpiderFoot
featured
SpiderFoot

Automates OSINT for threat intelligence and mapping your attack surface.