Open Source Vulnerability Management Platform

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

Automated NoSQL database enumeration and web application exploitation tool.

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

ODAT: Oracle Database Attacking Tool

Fake Protocol Server

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

⛽ Tokenize gas on Ethereum with GasToken ⛽

KonomiTV: Kept Organized, Notably Optimized, Modern Interface TV media server

An intentionally designed broken web application based on REST API.

Nmap Dashboard Mini Project

Emulator for Software-Defined Wireless Networks

Fuzz test your application using your OpenAPI or Swagger API definition without coding

Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()

An interactive multi-user web JS shell

Single Page App with FastAPI and Vue.js

A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.

Wireless Hacking Devices Protocol client

Git manager for pentesters

lightyear is a tool to dump files in tedious (blind) conditions using PHP filters

Check bitrix vulnerabilities

OWASP Appsec Discovery tool and service for searching, parsing, and scoring severity using rules or AI for Swagger, Protobuf, GraphQL, DTOs, and other structured contract objects in code

Pay per content in ghost blog with IOTA

sitemap_importer extension for Burp.

SQML-alpha repository

Currency converter for the Steam Market

Search Bitrix URLS