SecretFinder is a python script to discover sensitive data like api keys, access token, authorizations, jwt,..etc in JavaScript(JS) files. It verifies the files with large regular expression.
Read MoreBlackWidow is a python based web application spider to gather subdomains, URL's, dynamic parameters, email addresses and phone numbers from a target website.
Read MoreA plugin-based scanner that aids security researchers in identifying issues with several CMS.
Read MoreLFISuite, an open source local file inclusion scanner and exploiter that is coded in Python. It supports multiple attack points and also has TOR proxy support.
Read MoreDirsearch is Tool that performs bruteforce attack of sensitive directories and files that are found on the websites.
Read MoreWeevely is a web shell designed for post-exploitation purposes that can be extended over the network at runtime.Upload weevely PHP agent to a target web server to get
Read MoreWfuzz is a command line tool written in python. It is used to discover common vulnerabilities in web applications through the method of fuzzing.
Read MoreInsider tool is secure code reviewer, which exclusively focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code.
Read MoreSpaghetti is an Open Source web application scanner, it is designed to find various default and insecure files...
Read MoreDex2Jar is an instrument whose primary point is to convert .dex files into jar and smali files. The Dex2jar is mainly used for reverse engineering Android applications.
Read More--xss : Scan Site if vulnerable [Xss] url must be between double citation --sql : Scan Site if vulnerable [Sql] url must be between double citation
Read MoreRVuln:-- A multi-threaded-vulnerability-scanner written in Rust. Automated #Web Vulnerability Scanner.
Read MoreSecurity Tool For Reconnaissance And Information Gathering On A Website
Read MoreSkipfish is a powerful reconnaissance tool that has the ability to carry out security checks on web-based applications.
Read MoreDetective helps to find Sensitive information, files and directories that are not supposed to see.
Read MoreA python script designed to check if the website is vulnerable of clickjacking and creates a poc.
Read MoreClassyShark is a standalone binary inspection tool for Android developers/testers.
Read Moremultiple domain scanning with SQL injection dork by Bing, Google, or Yahoo .
Read MoreTulpar is an open source penetration testing tool that can find web application vulnerabilities.
Read MoreRiskInDroid (Risk Index for Android) is a quantitative risk analysis tool for Android applications written in Java and Python.
Read MoreThe tool aims at automating the identification of potential services running behind ports identified manually either through manual scan or services running locally.
Read More