A fast port scanner written in go with a focus on reliability and simplicity.
Crossplatform tool which help to perform static code analysis on mobile applications.
NoSql Injection CLI tool for finding vulnerable websites using MongoDB.
Brute discover GET and POST parameters.
A Workflow Engine for Offensive Security
A dynamic deception tool that actively deceives an attacker.
Allows users to capture a website page and then display a tree of domains that call each other.
A little tool to play with Windows security.
VM that is built from the ground up with a large amount of security vulnerabilities.
The network mapper.
Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load.
Script that automates the scanning of a target network for HTTP resources through XXE.
Burp extension to detect alias traversal via NGINX misconfiguration at scale.
Bypass Kerberoast detections with modified KDC options and encryption types.
An interactive TLS-capable intercepting HTTP proxy.