Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro…

jSQL Injection is a Java application for automatic SQL database injection.

latest version of scanners for IIS short filename (8.3) disclosure vulnerability

completely ridiculous API (crAPI)

IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation b…

This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by…

🔐 A CLI tool to extract server certificates

Finds unknown classes of injection vulnerabilities

Everything you need about Burp Extension Generation

A demo app vulnerable to directory traversal