jsleak is a tool to identify sensitive data in JS files through regex patterns. Although it’s built for this, you can use it to identifyRead more
Uchihash is a small utility that can save malware analysts the time of dealing with embedded hash values used for various things such as: DynamicallyRead more
Azure JSON Web Token (“JWT”) Manipulation Toolset Azure access tokens allow you to authenticate to certain endpoints as a user who signs in with aRead more
Red Team tool for exfiltrating the target organization’s Google People Directory that you have access to, via Google’s People API. HOW TO Create a newRead more
Reportedly, Carter’s failure to implement proper authentication protocols on the store’s parcel tracking pages exposed data and shoppers to scams. VpnMentor analysts report that theRead more
Interactsh is an Open-Source Solution for Out of band Data Extraction, A tool designed to detect bugs that cause external interactions, For example – BlindRead more
This tool gives blue teams, SOC’s, researchers and companies the ability to detect the active mutations of their domains, thus preventing the use of theseRead more
Steal Apache Solr instance Queries with or without a username and password. DISCLAIMER: This project should be used for authorized testing and educational purposes only.Read more
A tool for exploring and exploiting Firebase datastores. Set up git clone https://github.com/iosiro/baserunner.git cd baserunner npm install npm run build npm start Go to http://localhost:3000Read more
The all_groups.py script allows to enumerate all Microsoft 365 Groups in a Azure AD tenant with their metadata: name visibility: public or private description emailRead more
A simple command line tool using which you can skip phone number based SMS verification by using a temporary phone number that acts like aRead more
ADS goes here!If you don't see it, then please turn OFF
AD blocker for this website.
Our ads are not aggressive and help us
pay for the server and coffee.
THANK YOU for your support!