Fast and customizable vulnerability scanner For JIRA written in Python

Testing TLS/SSL encryption anywhere on any port

Arsenal is just a quick inventory and launcher for hacking programs

Web Fuzzer

Scan and Search away!

Tools and scripts by Arctic Wolf

A Proof-Of-Concept for the CVE-2021-44228 vulnerability.

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

Security Tool to Look For Interesting Files in S3 Buckets

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

FirebaseScan is a pen-testing tool to automatically scanning and exploiting Firebase DB vulnerability in the android application.

A simple python script to exploit vulnerable Firebase Database. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and writ…

Check for Host-Header SSRF Attack on a single or multiple hosts

Check subdomains for Open S3 buckets

🎓 Path to a free self-taught education in Computer Science!

Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3

🍺 The missing package manager for macOS (or Linux)

UNetbootin installs Linux/BSD distributions to a partition or USB drive

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "wr…

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

Nikto web server scanner

A fuzzer for detecting open redirect vulnerabilities

Web path scanner

Tools to work with android .dex and java .class files