Hacking Tools

Bypass-url-parser is a tool designed to simplify theprocess of testing URL parsing vulnerabilities in web applications. It tests MANY url bypasses to reach a 40X protected page.

CrackQL is a versatile GraphQL penetration testing tool that exploits poor rate-limit and cost analysis controls to brute-force credentials and fuzz operations.

SecretOpt1c is a Red Team tool that helps uncover sensitive information in websites using Active and Passive Techniques for Superior Accuracy.

SpoolSploit is a collection of Windows print spooler exploits containerized with other utilities for practical exploitation.

SQLMutant uses a variety of techniques to detect vulnerabilities, including pattern matching, error analysis, and timing attacks.

SSTImap can be used as an interactive penetration testing tool for SSTI detection and exploitation, which allows more advanced exploitation.

TerminatorZ is an efficient web security tool designed to scan for potential vulnerabilities in your web applications.

SauronEye is a search tool built to aid red teams in finding files containing specific keywords. Such as passwords and secrets, across multiple network drives and within the contents of files, including Microsoft Office files.

ScopeHunter is a command-line tool for finding in-scope targets for Bug Bounty Hunting programs. It uses the latest databases from HackerOne, BugCrowd, Intigriti, and YesWeHack to give you accurate and up-to-date results.