tools

Bearer – Code Security Scanning Tool (SAST) That Discover, Filter And Prioritize Security Risks And Vulnerabilities Leading To Sensitive Data Exposures (PII, PHI, PD)

April 29, 2023

Discover, filter, and prioritize security risks and vulnerabilities impacting your code. Bearer is a static application security testing (SAST) tool...

9a6d23b1b8322752c865399b654d25a3e5d256b0b5bb17a22f85ae58df38d60d

FirebaseExploiter – Vulnerability Discovery Tool That Discovers Firebase Database Which Are Open And Can Be Exploitable

April 29, 2023

FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily built for...

89c74ec95b804da40db37c7e5e68b5e9fbc2131f064d0189805f348007216452

PhoneSploit-Pro – An All-In-One Hacking Tool To Remotely Exploit Android Devices Using ADB And Metasploit-Framework To Get A Meterpreter Session

April 27, 2023

An all-in-one hacking tool written in Python to remotely exploit Android devices using ADB (Android Debug Bridge) and Metasploit-Framework. Complete...

8917a5ac90d3155577460b44bcabbf620cc34af1863ec8d0945deb5b52115601

PortEx – Java Library To Analyse Portable Executable Files With A Special Focus On Malware Analysis And PE Malformation Robustness

April 26, 2023

PortEx is a Java library for static malware analysis of Portable Executable files. Its focus is on PE malformation robustness,...

53dc7b8db04c01bd2b2eb8b967c8b1ab5fb2df974d61e0467e5dd6010fa5268b

auditpolCIS – CIS Benchmark Testing Of Windows SIEM Configuration

April 25, 2023

CIS Benchmark testing of Windows SIEM configuration This is an application for testing the configuration of Windows Audit Policy settings...

a049959e6d99a05fa6de8abd63605a00bc9fdd3e41ebc176a85337478635f063

KubeStalk – Discovers Kubernetes And Related Infrastructure Based Attack Surface From A Black-Box Perspective

April 24, 2023

KubeStalk is a tool to discover Kubernetes and related infrastructure based attack surface from a black-box perspective. This tool...

Nuclearpond – A Utility Leveraging Nuclei To Perform Internet Wide Scans For The Cost Of A Cup Of Coffee

April 24, 2023

Nuclear Pond is used to leverage Nuclei in the cloud with unremarkable speed, flexibility, and perform internet wide scans for...

4bcf1dfe4df3a751d73c6b5134c113ec3b7141c2fe7dc6128531b2c893770720

PowerMeUp – A Small Library Of Powershell Scripts For Post Exploitation That You May Need Or Use!

April 22, 2023

This is a powershell reverse shell that executes the commands and or scripts that you add to the powerreverse.ps1 file...

2b9948240ccaf39f94016071de91d499c75c412cd7792a466d6f99783857460a

Striker – A Command And Control (C2)

April 21, 2023

Striker is a simple Command and Control (C2) program. Disclaimer This project is under active development. Most of the features...

958e1c84d1c3d4f705f9588173aa9b10bddfd1e900ccb5c37eef5677f1c621d1

UDPX – Fast A nd Lightweight, UDPX Is A Single-Packet UDP Scanner Written In Go That Supports The Discovery Of Over 45 Services With The Ability To Add Custom Ones

April 20, 2023

Fast and lightweight, UDPX is a single-packet UDP scanner written in Go that supports the discovery of over 45 services...

da30cc1989aae1ebcf9c4f9c3c877132c1fae32c06a959986247d0e9caa9d173

Katana – A Next-Generation Crawling And Spidering Framework

April 19, 2023

A next-generation crawling and spidering framework Features • Installation • Usage • Scope • Config • Filters • Join Discord...

5b0d1d5c06517e21ed30f02a75bbead8a0121f01a8cb6c0e8837dd2a9ca1bf98

Wa-Tunnel – Tunneling Internet Traffic Over Whatsapp

April 18, 2023

This is a Baileys based piece of code that lets you tunnel TCP data through two Whatsapp accounts. This can...

Nmap-API – Uses Python3.10, Debian, python-Nmap, And Flask Framework To Create A Nmap API That Can Do Scans With A Good Speed Online And Is Easy To Deploy

April 17, 2023

Uses python3.10, Debian, python-Nmap, and flask framework to create a Nmap API that can do scans with a good speed...

Tools

Scriptkiddi3 – Streamline Your Recon And Vulnerability Detection Process With SCRIPTKIDDI3, A Recon And Initial Vulnerability Detection Tool Built Using Shell Script And Open Source Tools

April 17, 2023

Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using shell script...

71445c068bf90feaafafca1f1781b7129be423ed814b8dae1673c163d884d7ec

GVision – A Reverse Image Search App That Use Google Cloud Vision API To Detect Landmarks And Web Entities From Images, Helping You Gather Valuable Information Quickly And Easily

April 15, 2023

GVision is a reverse image search app that use Google Cloud Vision API to detect landmarks and web entities from...

Pinacolada – Wireless Intrusion Detection System For Hak5’s WiFi Coconut

April 14, 2023

Pinacolada looks for typical IEEE 802.11 attacks and then informs you about them as quickly as possible. All this with...

5673845af8eacb1f873b18a043d63d142a83734921cccbc4c668331d44166c14

debugHunter – Discover Hidden Debugging Parameters And Uncover Web Application Secrets

April 14, 2023

Discover hidden debugging parameters and uncover web application secrets with debugHunter. This Chrome extension scans websites for debugging parameters and...

1f0115ff07b442279efda8a89554dfaef9405a59d9c5288104d43fea17755055

QuadraInspect – Android Framework That Integrates AndroPass, APKUtil, And MobFS, Providing A Powerful Tool For Analyzing The Security Of Android Applications

April 12, 2023

The security of mobile devices has become a critical concern due to the increasing amount of sensitive data being stored...

tools

Bearer – Code Security Scanning Tool (SAST) That Discover, Filter And Prioritize Security Risks And Vulnerabilities Leading To Sensitive Data Exposures (PII, PHI, PD)

FirebaseExploiter – Vulnerability Discovery Tool That Discovers Firebase Database Which Are Open And Can Be Exploitable

PhoneSploit-Pro – An All-In-One Hacking Tool To Remotely Exploit Android Devices Using ADB And Metasploit-Framework To Get A Meterpreter Session

PortEx – Java Library To Analyse Portable Executable Files With A Special Focus On Malware Analysis And PE Malformation Robustness

auditpolCIS – CIS Benchmark Testing Of Windows SIEM Configuration

KubeStalk – Discovers Kubernetes And Related Infrastructure Based Attack Surface From A Black-Box Perspective

Nuclearpond – A Utility Leveraging Nuclei To Perform Internet Wide Scans For The Cost Of A Cup Of Coffee

PowerMeUp – A Small Library Of Powershell Scripts For Post Exploitation That You May Need Or Use!

Striker – A Command And Control (C2)

UDPX – Fast A nd Lightweight, UDPX Is A Single-Packet UDP Scanner Written In Go That Supports The Discovery Of Over 45 Services With The Ability To Add Custom Ones

Katana – A Next-Generation Crawling And Spidering Framework

Wa-Tunnel – Tunneling Internet Traffic Over Whatsapp

Nmap-API – Uses Python3.10, Debian, python-Nmap, And Flask Framework To Create A Nmap API That Can Do Scans With A Good Speed Online And Is Easy To Deploy

Scriptkiddi3 – Streamline Your Recon And Vulnerability Detection Process With SCRIPTKIDDI3, A Recon And Initial Vulnerability Detection Tool Built Using Shell Script And Open Source Tools

GVision – A Reverse Image Search App That Use Google Cloud Vision API To Detect Landmarks And Web Entities From Images, Helping You Gather Valuable Information Quickly And Easily

Pinacolada – Wireless Intrusion Detection System For Hak5’s WiFi Coconut

debugHunter – Discover Hidden Debugging Parameters And Uncover Web Application Secrets

QuadraInspect – Android Framework That Integrates AndroPass, APKUtil, And MobFS, Providing A Powerful Tool For Analyzing The Security Of Android Applications

Certwatcher – Tool For Capture And Tracking Certificate Transparency Logs, Using YAML Templates Based DSL

Reportly – An AzureAD User Activity Report Tool

SilentMoonwalk – PoC Implementation Of A Fully Dynamic Call Stack Spoofer

WindowSpy – A Cobalt Strike Beacon Object File Meant For Targetted User Surveillance

Seekr – A Multi-Purpose OSINT Toolkit With A Neat Web-Interface

Grepmarx – A Source Code Static Analysis Platform For AppSec Enthusiasts

CVE Alert: CVE-2025-2070

CVE Alert: CVE-2025-2068

CVE Alert: CVE-2025-25775

CVE Alert: CVE-2025-2069

CVE Alert: CVE-2025-3928

You may have missed