Stars
A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and supports symbolic modelling of strings and regular expressions.
Build DJGPP cross compiler and binutils on Windows (MinGW/Cygwin), Mac OSX and Linux
Monorepo of Labs for the Security Knowledge Framework (SKF)
Symbolic execution for the XorShift128+ algorithm.
Compute Natural Breaks in Python (Fisher-Jenks algorithm)
Continously updated massdns docker that fetches fresh resolvers each run
Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.
BChecks collection for Burp Suite Professional
BChecks collection for Burp Suite Professional and Burp Suite DAST
Burp Extension for a passive scanning JS files for endpoint links.
XSS payloads designed to turn alert(1) into P1
A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
π Visualize and explore IaC βοΈ Create and share notes in VS Code π€ Sync notes and findings in real-time with friends
Differential testing framework for HTTP implementations
The Most Advanced Client-Side Prototype Pollution Scanner
Automation for javascript recon in bug bounty.
Extract URLs, paths, secrets, and other interesting bits from JavaScript