mininode: reduce the attack surface of the Node.js applications
Mininode Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis of source code. It supports two modes of reduction (1) coarse,...
Category: Web Vulnerability Analysis
4-ZERO-3: Tool to bypass 403/401
4-ZERO-3 Tool to bypass 403/401. This script contains all the possible techniques to do the same. NOTE: If you see multiple [200 Ok]/bypasses as output, you must check the Content-Length....
STEWS: Security Testing and Enumeration of WebSockets
STEWS: Security Testing and Enumeration of WebSockets STEWS is a tool suite for security testing of WebSockets This research was first presented at OWASP Global AppSec US 2021 Features STEWS provides...
swurg: automating OpenAPI-based APIs security assessments
Swurg is a Burp Suite extension designed for OpenAPI testing The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for REST APIs, which allows both humans and computers...
cookiemonster v1.4 releases: detect and abuse vulnerable implementations of stateless sessions
CookieMonster CookieMonster is a command-line tool and API for decoding and modifying vulnerable session cookies from several different frameworks. It is designed to run in automation pipelines which must be...
SQLbit: automatize boolean-based blind SQL injections
SQL Blind Injection Tool A script for automatizing boolean-based blind SQL injections. Works with SQLite at least supports using cookies. It uses bitwise comparisons with multithreading to find cell values...
Google Maps API Scanner
Google Maps API Scanner Used for determining whether a leaked/found Google Maps API Key is vulnerable to unauthorized access by other applications or not. Blog Post #1 – Unauthorized Google...
Web Cache Vulnerability Scanner v1.2 releases: CLI tool for testing for web cache poisoning
Web Cache Vulnerability Scanner Web Cache Vulnerability Scanner (WCVS) is a fast and versatile CLI scanner for web cache poisoning developed by Hackmanit. The scanner supports many different web cache poisoning techniques, includes...
haptyc: Test Generation Framework
What’s Haptyc? Haptyc is a python library which was built to add payload position support and Sniper/Clusterbomb/Batteringram/Pitchfork attack types into Turbo Intruder. While Haptyc accomplishes these goals fairly well it...
forbidden v10.4 releases: Bypass 4xx HTTP response status codes
Forbidden Bypass 4xx HTTP response status codes. Script uses multithreading, and is based on brute-forcing so might have some false positives. Script uses colored output. Results will be sorted by...
Kunyu v1.7.2 releases: More efficient corporate asset collection
Kunyu Kunyu (kunyu), whose name is taken from , is actually a professional subject related to geographic information, which counts the geographic information of the sea, land, and sky. The...
smuggler: HTTP Request Smuggling / Desync testing tool
Smuggler An HTTP Request Smuggling / Desync testing tool written in Python 3. IMPORTANT This tool does not guarantee any false positives or false negatives. Just because a mutation may...
Oralyzer: Open Redirection Analyzer
Oralyzer Oralyzer, a simple python script that is capable of finding the open redirection vulnerability in a website. It does that by fuzzing the url i.e. provided as the input....
kenzer v3.35 releases: Automated web assets enumeration & scanning
KENZER | Automated web assets enumeration & scanning Built-in Modules blacklist <target>,<regex> – initializes & removes blacklisted targets whitelist <target>,<regex> – initializes & keeps only whitelisted targets program <target>,<link> – initializes the program...
karma v2: Passive Open Source Intelligence (OSINT) Automated Reconnaissance
𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework) 𝚔𝚊𝚛𝚖𝚊 𝚟𝟸 can be used by Infosec Researchers, Penetration Testers, Bug Hunters to find deep information, more assets,...
