Must Need
InQL – A Burp Extension for GraphQL Security Testing
A security testing tool to facilitate GraphQL technology security auditing efforts. InQL can be used as a stand-alone script, or as a...
Fama : Forensic Analysis For Mobile Apps
Fama is a tool for android extraction and analysis framework with an integrated Autopsy Module. Dump easily user data from a device...
DNS Rebinding Tool : DNS Rebind Tool With Custom Scripts
This project is meant to be an All-in-one Toolkit to test further DNS rebinding attacks and my take on understanding these kind of attacks....
FockCache : Minimalized Test Cache Poisoning
FockCache is a minimalized test cache poisoning. It tries to make cache poisoning by trying X-Forwarded-Host and X-Forwarded-Scheme headers on web pages.
Polyshell : A Bash/Batch/PowerShell Polyglot
PolyShell is a script that's simultaneously valid in Bash, Windows Batch, and PowerShell. This makes PolyShell a useful template for penetration testing...
Unicornscan – Network Scanning Tool to Find the Open Ports
Unicornscan is an asynchronous network stimulus delivery/response recording tool. Meaning it sends out broken/unorganized/fragmented packets (without a regular pattern unlike other port scanning tools)...
MSOLSpray : A Password Spraying Tool For Microsoft Online Accounts
MSOLSpray is a password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA...
