Vulnerabilities

magicRecon : A Powerful Shell Script To Maximize The Recon And Data Collection Process Of An Objective And Finding Common Vulnerabilities

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common…

4 years ago

Php_Code_Analysis : Scan your PHP code for vulnerabilities

Php_Code_Analysis is a tool to Scan your PHP code for vulnerabilities the script can find check_file_upload issueshost_header_injectionSQl injectioninsecure deserializationopen_redirectSSRFXSSLFIcommand_injection Features…

4 years ago

DNSObserver : A Handy DNS Service Written In Go To Aid In The Detection

DNSObserver is a handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities.…

4 years ago

Nginxpwner : Tool To Look For Common Nginx Misconfigurations & Vulnerabilities

Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities. Install cd /optgit clone https://github.com/stark0de/nginxpwnercd nginxpwnerchmod +x…

4 years ago

Vulnerablecode : A Free And Open Vulnerabilities Database

VulnerableCode is a free and open database of FOSS software package vulnerabilities and the tools to create and keep the…

4 years ago

Watson : Enumerate Missing KBs & Suggest Exploits For Useful Privilege Escalation Vulnerabilities

Watson is a .NET tool designed to enumerate missing KBs and suggest exploits for Privilege Escalation vulnerabilities. Supported Versions Windows…

4 years ago

Kics : Find Security Vulnerabilities & Compliance Issues

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.…

4 years ago

Confused : Tool To Check For Dependency Confusion Vulnerabilities

Confused is a tool for checking for lingering free namespaces for private package names referenced in dependency configuration for Python…

4 years ago

SSRFuzz : A Tool To Find Server Side Request Forgery Vulnerabilities, With CRLF Chaining Capabilities

SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities. Why? I wanted to write…

4 years ago

Horusec : An Open Source Tool That Improves Identification Of Vulnerabilities

Horusec is an open source tool that performs static code analysis to identify security flaws during the development process. Currently,…

4 years ago