Fast and multi-purpose DNS toolkit designed for running DNS queries.
Credentials recovery project.
Generate javascript code to be injected in case you find a Server Side Javascript Injection.
Check for and exploit LFI vulnerabilities with a focus on PHP systems.
Check for backup artifacts that may disclose the web-application's source code.
Beacon Object Files for Kerberos abuse.
JSON Web Tokens Support for Burp Suite.
Endpoint visibility and collection tool.
Race Condition framework.
Bypass client-side encryption using custom logic for testing with Python and NodeJS.
Rapid content discovery tool for recursively querying webservers.
Accept URLs on stdin, replace all query string values with a user-supplied value.
Exploit race conditions in web apps with Requests.
Convert your masscan/subdomain-scan results into screenshots for better analysis.
Combines the speed of masscan with the reliability and detailed enumeration of nmap.
