Take it like a gift

Runtime Mobile Security
Runtime Mobile Security

A powerful web interface that helps you to manipulate Android and iOS Apps at Runtime.

CRLFMap
CRLFMap

CRLFMap is a tool to find HTTP Splitting vulnerabilities.

endoflife.date
endoflife.date

Informative site with EoL dates of everything.

Kscan
Kscan

Kscan is an all-round scanner developed purely in Go, with functions such as port scanning, protocol.

Bypass URL Parser
Bypass URL Parser

Tool that tests MANY url bypasses to reach a 40X protected page.

changedetection.io
changedetection.io

Page change monitoring with alerts a breezem, the best way to monitor website changes.

Evilginx3
Evilginx3

Standalone MITM attack framework allowing for the bypass of 2-factor authentication.

BaRMIe
BaRMIe

Enumerating and attacking Java Remote Method Invocation services.

Kubesploit
Kubesploit

Cross-platform command & control server and agent focused on containerized environments.

checkov
checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time.

jwt-heartbreaker
jwt-heartbreaker

Burp Suite extension to check JWT for using keys from known from public sources.

InQL
InQL

Burp Extension for GraphQL Security Testing.

endext
endext

A tool for extracting all the possible endpoints from the JS files.

EndPointer
EndPointer

An extension that auto extracts URLs from the current webpage and JS files.

awesome-cve-poc
awesome-cve-poc

A collection about Proof of Concepts of Common Vulnerabilities and Exposures.