Smart context-based SSRF vulnerability scanner.

Web Application Vulnerability Scanner

SVScanner - Scanner Vulnerability And MaSsive Exploit.

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

🎯 Fast CORS misconfiguration vulnerabilities scanner

Tulpar - Web Vulnerability Scanner

Free web-application vulnerability and version scanner

Web-based Source Code Vulnerability Scanner

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

LLM vulnerability scanner

List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

SQL Vulnerability Scanner

Striker is an offensive information and vulnerability scanner.

Extract deleted secrets from git repos

A tool to capture all the git secrets by leveraging multiple open source git searching tools

A collection of web pages vulnerable to SQL injection flaws

Bypass WAF SQL Injection SQLMAP

Websploit is a high level MITM framework

All-in-One WebSploit Installer for Android Devices (Termux) Created by @Voldemort1912

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Scans packages in npm and pypi for secrets

Find exposed credentials using GitHub Actions with TruffleHog Enterprise.

This is a POC to show it is possible to capture enough of a handshake with a user from a fake AP to crack a WPA2 network without knowing the passphrase of the actual AP.

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

Stealing CSRF tokens with CSS injection (without iFrames)

The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

this html file creates a csrf poc form to any http request.

CSRF Scanner