Detects the use of JavaScript libraries with known vulnerabilities. Available as a CLI tool, browser…

Toolkit for testing, tampering, and forging JSON Web Tokens. Tests common JWT vulnerabilities includ…

InQL is a Burp Suite and standalone GraphQL security scanner. Analyzes introspection queries, genera…

Offensive tool for Active Directory Certificate Services (AD CS) enumeration and abuse. Finds and ex…

Browser Exploitation Framework. Hooks web browsers via JavaScript and provides extensive command mod…

Advanced tunneling/pivoting tool that creates a VPN-like tunnel from the agent to the operator witho…