Grendel-Scan
A tool for automated security scanning of web applications. Many features are also present for manual penetration testing. Automated security scanning of web applications Manual penetration testing features
FEATURES
SIMILAR TOOLS
A practical guide on NTLM relaying for Active Directory attacks.
A domain reconnaissance tool that automates subdomain discovery, port scanning, and monitoring with support for multiple data sources and notification integrations.
Weaponizing Kerberos protocol flaws for stealthy attacks on domain users.
A lightweight and portable Docker container for penetration testers and CTF players
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
Customize Empire's GET request URIs, user agent, and headers for evading detection and masquerading as other applications.
Rip web accessible (distributed) version control systems: SVN, GIT, Mercurial/hg, bzr, ...
Modlishka is a reverse proxy tool for intercepting and manipulating HTTP traffic, ideal for penetration testers, security researchers, and developers to analyze and test web applications.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.