Category Archives: Vulnerabilities & attacks

OWASP Mutillidae II – Another Vulnerable Web-application

OWASP Mutillidae II is a free, open source, deliberately vulnerable web-application providing a target for web-security enthusiast.

bypass-firewalls-by-DNS-history – Tool to Bypass Firewalls

bypass-firewalls-by-DNS-history is a bash script (ab)uses DNS history records. This script will search for old DNS A records and check if the server..

wig – WebApp Information Gatherer

wig is a web application information gathering tool, which can identify numerous Content Management Systems and other administrative applications.

Shellphish – Phishing Tool for 18 Social Media

Shellphish is a phishing Tool that will create web sever with login page for major online social medias website including Instagram, Facebook, Twitter, Snapchat, Github, Yahoo, Protonmail.

WAFNinja – Tool to Bypass Web Application Firewalls

WAFNinja is a CLI tool written in Python. It shall help penetration testers to bypass a WAF by automating steps necessary for bypassing input validation. The tool was created with the objective to be easily extendible, simple to use and

Wafpass – Analyzing WAF Bypass Methods

WAFPASS is a tool to analyze parameters with all payloads' bypass methods, aiming at benchmark security solutions like WAF.

vscan – Vulnerability Scanner Using Nmap and NSE

vscan is a tool that puts an additional value into vulnerability scanning with nmap.