Chain Reactor is an open-source tool for testing detection and response coverage on Linux machines. The tool generates executables that…
Voltron is an extensible debugger UI toolkit written in Python. It aims to improve the user experience of various debuggers…
SSR Fire is an automated SSRF finder. Just give the domain name and your server and chill! ;) It also has options…
Hybrid Test Framework is a framework supports WebUi automation across a variety of browsers like Chrome, Firefox, IE, no only…
Talisman is a tool that installs a hook to your repository to ensure that potential secrets or sensitive information do…
Boko.py is an application scanner for macOS that searches for and identifies potential dylib hijacking and weak dylib vulnerabilities for…
Sharp Cookie Monster is a Sharp port of @defaultnamehere's cookie-crimes module - full credit for their awesome work! This C# project will…
Njsscan is a static application testing (SAST) tool that can find insecure code patterns in your node.js applications using simple pattern…
Snaffler is a tool for pentesters to help find delicious candy needles (creds mostly, but it's flexible) in a bunch of horrible…
Macrome an Excel Macro Document Reader/Writer for Red Teamers & Analysts. Blog posts describing what this tool actually does can…