A ready to use JSONP endpoints to help bypass content security policy of different websites. The tool was presented during…
Arjun is a web applications use parameters (or queries) to accept user input, take the following example into consideration. http://api.example.com/v1/userinfo?id=751634589…
HomePwn is a framework that provides features to audit and pentesting devices that company employees can use in their day-to-day…
Femida is automated blind-xss search plugin for Burp Suite. Installation Git clone https://github.com/wish-i-was/femida.git Burp -> Extender -> Add -> find and select…
Slither is a Solidity static analysis framework written in Python 3. It runs a suite of vulnerability detectors, prints visual…
AutoMacTC is a modular forensic triage collection framework designed to access various forensic artifacts on macOS, parse them, and present…
Certain characters in passwords ('O' and '0', 'I' and 'l', etc.) can be hard to identify when you need to…
Snare is a super next generation advanced reactive honeypot.It is a web application honeypot sensor attracting all sort of maliciousness…
Osmedeus is a fully automated offensive security framework for reconnaissance and vulnerability scanning Osmedeus allows you automated run the collection…
UAC-A-Mola is a tool that allows security researchers to investigate new UAC bypasses, in addition to detecting and exploiting known…