Take it like a gift

sponsor

An OOB interaction gathering server and client library

Tests SSL/TLS enabled services to discover supported cipher suites.

HTTP 403 bypass tool.

DOM XSS scanner for Single Page Applications.

Trace the path of a DNS query.

Dowgrade, convert, dissect and shuck authentication token based on Data Encryption Standard.

Spray shadow credentials across an entire domain.

Selenium based web scraper to generate passwords list.

Monitor AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

A simple script to screenshot a list of websites.

A mini webserver with FTP support for XXE payloads.

Automatic SQL injection with Charles and sqlmap API.

Threat framework to research security gaps in GraphQL implementations.

Scans the history of GitHub repositories to find sensitive things.

Read local Chrome cookies without root or decrypting.