Http
Browse 38 http tools
FEATURED
WAF and ModSecurity ruleset for web app attack detection and blocking.
Customizable security log generation with code-based rules for SIEM enrichment
Web vulnerability scanner for web app and mobile API security audits
Web gateway controlling access to web resources with threat protection
Scanner for CVE-2024-2862 unauthenticated password reset in LG LED Assistant
Cloud-based firewall with traffic inspection and automated threat response
Web application firewall protecting enterprise web apps and APIs
A fast and multi-purpose HTTP toolkit for sending HTTP requests and parsing responses
LinksDumper extracts links and endpoints from HTTP responses to support web application security testing and reconnaissance activities.
A command-line tool that identifies and extracts parameters from HTTP requests and responses to assist with web application security testing and vulnerability assessment.
A Python library that simplifies testing and exploiting race conditions in web applications using concurrent HTTP requests.
A virtual host scanner with the ability to detect catch-all scenarios, aliases, and dynamic default pages, presented at SecTalks BNE in September 2017.
Skyhook is an HTTP-based file transfer tool that uses obfuscation techniques to evade detection by Intrusion Detection Systems.
Tang is a network-based server that binds encrypted data access to network presence, allowing data decryption only when clients are connected to the specific network where the Tang server operates.
Helix is a versatile honeypot designed to mimic the behavior of various protocols including Kubernetes API server, HTTP, TCP, and UDP.
A tool for advanced HTTPD logfile security analysis and forensics, implementing various techniques to detect attacks against web applications.
CapTipper is a python tool to analyze, explore, and revive HTTP malicious traffic.
A cross-platform HTTP/2 Command & Control framework written in Golang for post-exploitation activities and remote system management.
A simple honeypot that collects credentials across various protocols
TANNER is a remote data analysis service that evaluates HTTP requests and generates responses for SNARE honeypots while emulating application vulnerabilities.
Galah is an LLM-powered web honeypot that mimics various web applications by dynamically responding to HTTP requests.
