Extract URLs, paths, secrets, and other interesting bits from JavaScript

Tools related to RFC 9116 (security.txt)

Scripts for Sourcegraph search results. Useful for static analysis <3

Post Processor for Facebook Static Analysis Tools.

List of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland

A security focused static analysis tool for Android and Java applications.

Effortlessly and transparently add correctly styled citations to your markdown paper given only a URL

"Can I take over DNS?" — a list of DNS providers and how to claim (sub)domains via missing hosted zones

My favorite C programming practices.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Hydra: a multithreaded site-crawling link checker in Python standard library

GitHub Action to scan your site for broken links so you can fix them 🔗

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

A library & tool for probing, parsing, and validating security.txt files as specified in RFC 9116 🚀📚

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Unpack the source code of React and other Webpacked apps!

The worker that serves Cloudflare's security.txt!

Takes a list of URLs and returns their HTTP response codes

Gatsby plugin that automatically creates security.txt for your site.

Parsing HTML at the command line

A modern and intuitive terminal-based text editor

Sourcetrail - free and open-source interactive source explorer

Embed any image into a prime number.

RunJS is a JavaScript playground for macOS, Windows and Linux. Write code with instant feedback and access to Node.js and browser APIs.