SSR Fire is an automated SSRF finder. Just give the domain name and your server and chill! ;) It also has options…
Hybrid Test Framework is a framework supports WebUi automation across a variety of browsers like Chrome, Firefox, IE, no only…
Talisman is a tool that installs a hook to your repository to ensure that potential secrets or sensitive information do…
Boko.py is an application scanner for macOS that searches for and identifies potential dylib hijacking and weak dylib vulnerabilities for…
Sharp Cookie Monster is a Sharp port of @defaultnamehere's cookie-crimes module - full credit for their awesome work! This C# project will…
Njsscan is a static application testing (SAST) tool that can find insecure code patterns in your node.js applications using simple pattern…
Snaffler is a tool for pentesters to help find delicious candy needles (creds mostly, but it's flexible) in a bunch of horrible…
Macrome an Excel Macro Document Reader/Writer for Red Teamers & Analysts. Blog posts describing what this tool actually does can…
FakeLogonScreen is a utility to fake the Windows logon screen in order to obtain the user's password. The password entered…
Shellcodetester is a tool that tests generated ShellCodes. Usage Example ShellCode Tester Linux Installation git clone https://github.com/helviojunior/shellcodetester.git cd shellcodetester/Linux make…