T-Reqs-HTTP-Fuzzer (Two Requests) is a grammar-based HTTP Fuzzer written as a part of the paper titled "T-Reqs: HTTP Request Smuggling with Differential Fuzzing"…
Wireshark-Forensics-Plugin is the most widely used network traffic analyzer. It is an important tool for both live traffic analysis &…
dep-scan is a fully open-source security audit tool for project dependencies based on known vulnerabilities, advisories and license limitations. Both…
Http-Desync-Guardian is to Analyze HTTP Requests To Minimize Risks Of HTTP Desync Attacks. HTTP/1.1 went through a long evolution since 1991…
pip-audit is a tool for scanning Python environments for packages with known vulnerabilities. It uses the Python Packaging Advisory Database (https://github.com/pypa/advisory-database)…
goCabrito is a super organized and flexible script for sending phishing campaigns. Features Sends to a single emailSends to lists…
ReFlutter framework helps with Flutter apps reverse engineering using the patched version of the Flutter library which is already compiled…
Driftwood is a tool that can enable you to lookup whether a private key is used for things like TLS…
Inject-Assembly is an alternative to traditional fork and run execution for Cobalt Strike. The loader can be injected into any…
Registry-Spy is a free, open-source cross-platform Windows Registry viewer. It is a fast, modern, and versatile explorer for raw registry…