CRT is a tool to queries the following configurations in the Azure AD/O365 tenant which can shed light on hard-to-find…
Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis of source…
Gh-Dork is a Github Dorking Tool. Supply a list of dorks and, optionally, one of the following: a user (-u)a…
BloodyAD is an Active Directory Privilege Escalation Framework, it can be used manually using bloodyAD.py or automatically by combining pathgen.py and autobloody.py. This framework supports…
Ninjas workout is a Vulnerable NodeJS Web Application. Quick Start Download the Repo =>run npm i After Installing all dependency just run…
FACT is a tool to collect, process and visualise forensic data from clusters of machines running in the cloud or…
Xolo is a tool to crawl, visualize and interact with SQL server links in a d3 graph to help in…
Dontgo403 is a tool to bypass 40X error. Installation git clone https://github.com/devploit/dontgo403; cd dontgo403; go get; go build Customization If…
VulnLab is a web vulnerability lab project developed by Yavuzlar. Vulnerabilities SQL InjectionCross Site Scripting (XSS)Command InjectionInsecure Direct Object References…
Http2Smugl tool helps to detect and exploit HTTP request smuggling in cases it can be achieved via HTTP/2 -> HTTP/1.1…