Scanner and Patcher This tool is very helpful for finding vulnerabilities present in Web Applications. A web...
WebApp PenTest
debugHunter – Chrome Extension Discover hidden debugging parameters and uncover web application secrets with debugHunter. This Chrome...
Graphicator Graphicator is a GraphQL “scraper” / extractor. The tool iterates over the introspection document returned by...
jsleak It is an easy-to-use command-line tool designed to uncover secrets and links in JavaScript files or...
EndExt EndExt is a .go tool for extracting all the possible endpoints from the JS files Idea...
ReconAIzer ReconAIzer is a powerful Jython extension for Burp Suite that leverages OpenAI to help bug bounty...
LIKE THAT SOOS is an independent software security company, located in Winooski, VT USA, building security software...
Geogramint – OSINT Geolocalization tool for Telegram Geogramint is an OSINT tool that uses Telegram’s API to...
dontgo403 dontgo403 is a tool to bypass 40X errors. Customization If you want to edit or add...
of-CORS of-CORS is Truffle Security’s tool suite for identifying and exploiting CORS misconfigurations on the internal networks of bug...
ScrapPY: PDF Scraping Made Easy ScrapPY is a Python utility for scraping manuals, documents, and other sensitive...
Kraken – a modular multi-language webshell coded by @secu_x11 Support On the one hand, Kraken is supported...
ModSecurity Backdoor This is a proof-of-concept of malicious software running inside of ModSecurity WAF. The software has...
DarkAngel DarkAngel is a fully automatic white hat vulnerability scanner, which can monitor hacker and bugcrowd assets,...
Super Xray xray is an excellent web vulnerability scanning tool, but only the command line version, starts...