Astra : Automated Security Testing For REST API’s

REST API penetration testing is complex due to continuous changes in existing APIs and newly added APIs. Astra can be…

• Kali Linux

MultiJuicer : Run Capture Flags & Security Trainings With OWASP Juice Shop

MultiJuicer is a tool used to run capture the flags and security trainings with OWASP juice shop . Running CTFs…

0l4bs : Cross-Site Scripting Labs For Web Application Security Enthusiasts

Ol4bs is a cross-site scripting labs for web application security enthusiasts. List of Chall ~ Chall 1 | URL ~…

How to Protect Yourself Against Common Password Attacks

To avoid password attacks, Authentication and access management may be evolving, but passwords are not going to disappear in the…

GTFO : Search For Unix Binaries To Bypass System Security Restrictions

GTFO is a tool used to search for Unix binaries that can be exploited to bypass system security restrictions. This…

HuskyCI : Performing Security Tests Inside Your CI

HuskyCI is an open source tool that orchestrates security tests and centralizes all results into a database for further analysis…

Haaukins : A Highly Accessible & Automated Virtualization Platform for Security Education

Haaukins is a highly accessible and automated virtualization platform for security education, it has three main components (Docker, Virtualbox and…

JSONBee : A Ready To Use JSONP Endpoints/Payloads To Help Bypass Content Security Policy Of Different Websites

A ready to use JSONP endpoints to help bypass content security policy of different websites. The tool was presented during…

DumpsterFire : Toolset – Security Incidents In A Box!

The DumpsterFire Toolset is a modular, menu-driven, cross-platform tool for building repeatable, time-delayed, distributed security events. Easily create custom event…

PingCastle : Get Active Directory Security At 80% In 20% Of The Time

PingCastle is a tool designed to assess quickly the Active Directory security level with a methodology based on risk assessment…