Information Gathering / Vulnerability Analysis / Web Information Gathering / Web Vulnerability Analysis
by do son · Published August 15, 2018
FireShodanMap is a Real-time map that integrates Firebase, Google Maps, and Shodan. A search is carried out using Shodan searching for vulnerable devices and they are shown on the map...
ODAT ODAT (Oracle Database Attacking Tool) is an open source penetration testing tool that tests the security of Oracle Databases remotely. Usage examples of ODAT: You have an Oracle database listening remotely and want...
HackB0x v1.0 HackBox is the combination of awesome tools and techniques. This tool includes [1] – Xss [2] – Exploits [3] – Subdomain scanner [4] – Whois Lookup [5] –...
Web Vulnerability Analysis / WebApp PenTest
by do son · Published August 13, 2018 · Last modified November 4, 2024
Pybelt is an open source hacker tool belt complete with: A port scanner SQL injection scanner Dork checker Hash cracker Hash type verification tool Proxy finding tool XSS scanner It...
XSS Finder Some simple tools which I’m using frequently to find XSS. Keep in mind: Do not trust scripts only! Sometimes the vulnerability is more complex and needs special treatment 😉...
Parse: A PHP Security Scanner The Parse scanner is a static scanning tool to review your PHP code for potential security-related issues. A static scanner means that the code is not executed...
HandyHeaderHacker HandyHeaderHacker is a script to examine HTTP responses from a server for best security practices. While HandyHeaderHacker is nowhere near completion it is in a state where you can...
Scout2 is a security tool that lets AWS administrators assess their environment’s security posture. Using the AWS API, Scout2 gathers configuration data for manual inspection and highlights high-risk areas automatically....
Web Exploitation / Web Vulnerability Analysis / WebApp PenTest
by do son · Published July 14, 2018 · Last modified October 10, 2021
Tplmap Tplmap assists the exploitation of Code Injection and Server-Side Template Injection vulnerabilities with a number of sandbox escape techniques to get access to the underlying operating system. The tool...
the Secure Coding Dojo The Secure Coding Dojo is a platform for delivering secure coding training. While it comes with its own vulnerable training application (the Insecure.Inc website) the training...
Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published July 9, 2018
Astra REST API penetration testing is complex due to continuous changes in existing APIs and newly added APIs. Astra can be used by security engineers or developers as an integral...
Exploitation / Information Gathering / Metasploit / Network PenTest / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest / Wireless
by do son · Published July 8, 2018 · Last modified November 4, 2024
discover For use with Kali Linux. Custom bash scripts used to automate various pentesting tasks. Download, setup & usage git clone https://github.com/leebaird/discover /opt/discover/ All scripts must be run from this location. cd...
Vooki is a free web application vulnerability scanner. Vooki is a user-friendly tool that you can easily scan any web application and find the vulnerabilities. Vooki includes Web Application Scanner, Rest API...
Information Gathering / Network PenTest / Vulnerability Analysis / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published July 1, 2018
Watchog is an integration of open source security tools aimed to provide a holistic security view for a given domain/IP. The way Watchdog is built it can be used by product...
XVNA Extreme Vulnerable Node Application XVNA is an extremely vulnerable node application coded in Nodejs(Expressjs)/MongoDB that helps security enthusiasts to learn application security. it’s not counseled to host this application...
Support Securityonline.info site. Thanks!
