mTLS-Encrypted Back-Connect SOCKS5 Proxy enabling secure tunneled connections through NAT systems.
SoaPy is a Proof of Concept tool for conducting offensive interaction with Active Directory Web Services from Linux hosts.
A Burp Suite plugin designed for automated fuzz testing of file upload vulnerabilities with over 500 payloads.
A powerful authorization enforcement detection extension for Burp Suite that reduces false positives with AI assistance.
IDOR Scanner is a Burp Suite extension that automates the detection of IDOR vulnerabilities in web applications.
Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets.
A curated list of practical resources for offensive CI/CD security research since 2021.
A Bash script for automated nuclei dast scanning by using passive urls.
ZigStrike is a powerful Payload Delivery Pipeline developed in Zig, offering various injection techniques and anti-sandbox features.
jSQL Injection is a Java application for automatic SQL database injection.
