Plugin-based tool to scan public version control systems for sensitive information.
The missing GraphQL security security layer.
A JavaScript Engine Fuzzer.
Extract data from a .git directory.
Free Flash decompiler.
Divide full port scan results and use it for targeted Nmap runs.
A wrapper around grep to avoid typing common patterns.
Automation framework for running multiple open sourced subdomain bruteforcing tools in parallel.
A Burp Suite extension to find potential endpoints and parameters.
Post exploitation tool to maintain some level of acces.
Automated reconnaissance framework for webapps, highly configurable streamlined recon process.
Crawls bug bounty platform scopes.
Subdomain takeover vulnerability checker.
Burp Suite extension that allows request/response modification using a GUI.
Useful tool to track location or mobile number.