CORS Misconfiguration Scanner

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

A user-friendly, lightweight TUI for disk imaging

Try to find the origin IP of a webapp protected by Cloudflare.

X-Forwarded-For [403 forbidden] enumeration

Bypass CDN and WAF restrictions using CDN re-fronting.

An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

🛰️ Represent any GraphQL API as an interactive graph

Automated Security Testing For REST API's

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

Web Security Scanner

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

Wordlists handcrafted (and automated) with ♥

Arsenal is just a quick inventory and launcher for hacking programs

CRLFMap is a tool to find HTTP Splitting vulnerabilities

OSINT tool to crawl a site and extract useful recon info.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

All about bug bounty (bypasses, payloads, and etc)

An LLM agent that conducts deep research (local and web) on any given topic and generates a long report with citations.

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️