Home to public development of NIST Special Publication 800-63-3: Digital Authentication Guidelines

Stakeholder-Specific Vulnerability Categorization

Crawl a site to generate knowledge files to create your own custom GPT from a URL

A tool for studying JavaScript malware.

A general-purpose code generation tool powered by Rete.js

SQL powered operating system instrumentation, monitoring, and analytics.

Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc

Beautifier for javascript

ECMAScript parsing infrastructure for multipurpose analysis

Modular static malicious JavaScript detection system

Low-code backend platform. Manage database on spreadsheet-like UI and build cloud functions workflows in JS/TS, all in your browser.

Develop, test, and deploy Cloudflare Workers with Deno.

A next-generation crawling and spidering framework.

The open source Firebase alternative. Supabase gives you a dedicated Postgres database to build your web, mobile, and AI applications.

A javascript based botnet/C&C to remotely manage/control browsers.

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.

A IDA plugin to enable linking to locations in an IDB with a disas:// URI

Coroot is an open-source APM & Observability tool, a DataDog and NewRelic alternative 📊, 🖥️, 👉. Powered by eBPF for rapid insights into system performance. Monitor, analyze, and optimize your infra…

Generates a network diagram using Tenable data

A collection of tools for managing and automating vulnerability management.

GUI tool which enables you to parse nessus scan files from Nessus and Tenable.SC by (C) Tenable, Inc. and exports results to a Microsoft Excel Workbook for effortless analysis.

Python Tenable.sc scripts including Combination Asset Creator, Tenable Report Creator, Tenable Report Downloader, ServiceNow integration with Tenable.sc, Tenable API, ServiceNow API

A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation or a troubleshooting event

Python Library for interfacing into Tenable's platform APIs

Simple shell script for automated domain recognition with some tools

Bash script for DNS Enumeration.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

This tool can be used to brute discover GET and POST parameters

Mass scan IPs for vulnerable services