Promote your tool

Boost your visibility among cybersecurity professionals and enthusiasts!

More infos

> Featured this week

JS-Tap
featured
JS-Tap

JavaScript payload and supporting software to be used as XSS payload or post exploitation implant.

Shellcrypt
featured
Shellcrypt

A QoL tool to obfuscate shellcode.

RouterSploit
featured
RouterSploit

Exploitation framework for embedded devices.

Burp WP
featured
Burp WP

Find known vulnerabilities in WordPress plugins and themes, WPScan like plugin for Burp.

Ground control
featured
Ground control

A collection of scripts mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.

> Last added

jwt-cracker
jwt-cracker

Simple JWT token brute force cracker.

server-side-prototype-pollution
server-side-prototype-pollution

Identifies server-side prototype pollution vulnerabilities.

prototype-pollution-exploits
prototype-pollution-exploits

Prototype Pollution exploits collection.

ppmap
ppmap

Exploitation tool which leverages client-side Prototype Pollution to XSS.

SayHello
SayHello

Improved version of SayCheese, designed to capture images via social engineering.

SayCheese
SayCheese

Grab target's webcam shots by link.

SafeLine
SafeLine

A self-hosted WAF to protect web applications from cyber attacks.

broken-link-hijacking
broken-link-hijacking

Broken Link Hijacking Burp Suite extension.

dead-link-checker
dead-link-checker

A dead-simple way to recursively look for broken links on a web page.

broken-link-checker
broken-link-checker

Find broken links, missing images, etc within your HTML.