Toolkit for testing, tampering, and forging JSON Web Tokens. Tests common JWT vulnerabilities includ…

An Advanced Web Application Firewall that protects against threats like SQL injection and XSS by fil…

Lightweight program to find all known misconfigurations in CORS (Cross-Origin Resource Sharing) impl…

Automated NoSQL injection and database exploitation tool. Targets MongoDB, CouchDB, Redis, and Cassa…

Out-of-band interaction gathering server. Generates unique collaboration URLs for detecting blind vu…

Standalone man-in-the-middle attack framework that bypasses 2FA by proxying authentication sessions …