secureCodeBox (SCB) - continuous secure delivery out of the box

one-stop resource for all things offensive security.

OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

CLI component of OWASP PurpleTeam

A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Written in nodeJS and Electron.

Application scanning component of OWASP PurpleTeam

TLS scanning component of OWASP PurpleTeam

Orchestrator component of OWASP PurpleTeam

Server scanning component of OWASP PurpleTeam

Integrate static security testing with HCL AppScan on Cloud using GitHub Actions

A Chrome Plugin to Bypass jQuery Real Person Captcha

Testing framework for firestore and firebase storage security rules.

is a Node.js tool designed to validate the functionality of various types of proxy servers, including HTTP, HTTPS, SOCKS4, and SOCKS5. It reads a list of proxies from a file, checks each proxy's connectivity using the specified protocol, and logs the results.

Demo of API key cracking using a timing attack

Logging component of OWASP PurpleTeam

This HTML file creates a CSRF PoC form to any HTTP request.

BugBlogs - Open Source Blog Platform for Security Enthusiasts

A CALDERA plugin

AWS Lambda functions of OWASP PurpleTeam

My Personal Blog with Random Rants about Information Security