The Largest Collection of Cybersecurity Tools

VIDOC is an AI-powered security tool that automates code review, detects and fixes vulnerabilities, and monitors external security, ensuring the integrity of both human-written and AI-generated code in software development pipelines.

SecurityVulnerability.io simplifies the process of collecting, enriching, and presenting vulnerability information for both human and machine consumption.

A GaaS platform that simplifies and streamlines compliance processes for MSPs, ensuring their policies are properly aligned, authorized, adopted, and assessed.

A tool to find XSS vulnerabilities in web applications

Find exploits in local and online databases instantly

A powerful directory/file, DNS and VHost busting tool written in Go.

A fast and simple recursive content discovery tool

Monitor GitHub for sensitive data

A collection of XSS payloads designed to turn alert(1) into P1

An open-source attack surface management platform for identifying and managing vulnerabilities

A Python-based tool that automates the identification and exploitation of file inclusion and directory traversal vulnerabilities in web applications.

A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

An interactive multi-user web JS shell

A multi-threaded scanner for identifying CORS flaws and misconfigurations

A tool for testing and exploiting Cross-Site Scripting (XSS) vulnerabilities.

A fast and simple DOM based XSS vulnerability scanner

A scripting engine for interacting with GraphQL endpoints for pentesting purposes.

A simple snippet to increment ../ on the URL.

A local file inclusion exploitation tool

A command-line script that tests multiple domains from a list for open redirect vulnerabilities and reports findings.

Golang client for querying SecurityTrails API data

A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities

A simple JWT token brute force cracker

A subdomain finder tool