Take it like a gift

featured

A free class for web security.

Data exfiltration over DNS request covert channel.

A lightweight web security auditing toolkit.

Automated firmware analysis tool for composition analysis and vulnerability scanning.

Exploits found on the INTERNET.

Obtain GraphQL API Schema even if the introspection is not enabled.

Helps to identify IoT related dashboards and scan them for default passwords.

Burp Suite extension which injects non-invasive headers to reveal backend systems.

File upload vulnerability scanner and exploitation tool.

Monitor GitHub to search and find sensitive data in real time.

A certificate transparency log keyword sniffer written in Python.

Cross-platform command & control server and agent focused on containerized environments.

Checks expired domains to determine good candidates for phishing and C2 domain names.

Checks and hardens your Windows configuration.

A tool for testing for certificate validation vulnerabilities of TLS connections.