Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

A domain name permutation and enumeration library powered by Rust.

Content-Type Research

code-based qr code generator

A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.

Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()

Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption code, password strings, vulnerabilities, etc.

WhiteWinterWolf's PHP web shell

A PHP Reverse_shell Payload - use it at your own risk!

Scripts for Analysis of a RCE in Moodle Calculated Questions (CVE-2024-43425)

Gotta go fast

AI-Powered Automated Penetration Testing Tool

best tool for finding SQLi,XSS,LFi,OpenRedirect

A tool to fastly get all javascript sources/files

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way …

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

A simple tool for bypassing file upload restrictions.

A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.

Burp Plugin - Conditional Match and Replace (CMAR)

Notebook Caido Plugin

Exploit for the vulnerability CVE-2024-43044 in Jenkins

A curated list of awesome forensic analysis tools and resources

Top disclosed reports from HackerOne

Copycat Toolkit is a set of tools to view information about hostname, IP’s vulnerabilities, internet of things or for real-time internet scanning.

Collection of Windows Privilege Escalation (Analyse/PoC/Exp...)