RedTeam.Blue

Active Filters:

📂 Web Application Security

Clear all filters

Web Application Security

71 tools found

Showing 29-56 of 71 tool(s) in the category "Web Application Security"

Page 2 of 3

Web Application Security

Interactsh

Tool to detect out-of-band (OOB) interactions triggered by vulnerabilities.

Marcos Henrique

☆

Web Application Security

httpx

Fast HTTP toolkit for reliable probing using multi-threading and retryable HTTP requests.

Marcos Henrique

☆

Web Application Security

rawhttp

Go library for sending HTTP requests with full control and minimal validation.

Marcos Henrique

☆

Web Application Security

meg

Tool for fetching many URLs while avoiding flooding individual servers.

Marcos Henrique

☆

Web Application Security

ffuf

Fast web fuzzer for discovering hidden files and directories in web applications.

Marcos Henrique

☆

Web Application Security

XSStrike

XSS detection suite with parsers, intelligent payload generator, and fast crawler.

Marcos Henrique

☆

Web Application Security

Arjun

Tool to find valid HTTP query parameters in URLs, with an extensive dictionary.

Marcos Henrique

☆

Web Application Security

toxssin

Open-source tool for automating Cross-Site Scripting (XSS) vulnerability exploitation.

Marcos Henrique

☆

Web Application Security

CrackQL

GraphQL pentesting tool exploiting rate-limit flaws for brute-force and fuzzing.

Marcos Henrique

☆

Web Application Security

NoSQLMap

Python tool to audit and automate injection attacks in NoSQL databases.

Marcos Henrique

☆

Web Application Security

xray

Comprehensive web security assessment tool with vulnerability scanning and custom POC.

Marcos Henrique

☆

Web Application Security

Apidor

Tool to automate the search for IDOR vulnerabilities in web apps and APIs.

Marcos Henrique

☆

Web Application Security

sqlmap

Open-source tool to automate SQL injection detection and exploitation in databases.

Marcos Henrique

☆

Web Application Security

FEROXBUSTER

Simple, fast, recursive web content discovery tool written in Rust.

Marcos Henrique

☆

Web Application Security

dompdf RCE

RCE exploit for dompdf 1.2.0 via ttf+php polyglot file.

Marcos Henrique

☆

Web Application Security

bwapp

Deliberately insecure web application with over 100 bugs for vulnerability learning.

Marcos Henrique

☆

Web Application Security

DVWA

Intentionally vulnerable PHP/MariaDB web application for security testing and learning.

Marcos Henrique

☆

Web Application Security

Request Map Generator

Generates a request map for a page to identify third parties, byte origin, and slowness.

Marcos Henrique

☆

Web Application Security

dirsearch

Advanced web path brute-forcer tool for discovery.

Marcos Henrique

☆

Web Application Security

hakoriginfinder

Discovers the origin host behind a reverse proxy for WAF bypass.

Marcos Henrique

☆

Web Application Security

IP Rotate

Burp Suite extension changing IP per request via AWS API Gateway to bypass blocking.

Marcos Henrique

☆

Web Application Security

sandcat

Lightweight, fast browser with pen-testing/web development features, extensible via Lua.

Marcos Henrique

☆

Web Application Security

WATOBO

Security tool for efficient (semi-automated) web application security audits.

Marcos Henrique

☆

Web Application Security

Weevely

Web shell for post-exploitation with over 30 modules for admin tasks and access.

Marcos Henrique

☆

Web Application Security

AuthMatrix

Burp extension to test permissions and access controls in web applications.

Marcos Henrique

☆

Web Application Security

backslash

Burp extension for detecting server-side injections with evasive, precise techniques.

Marcos Henrique

☆

Web Application Security

Agartha

Generates payloads and assesses LFI, RCE, SQLi, auth, and access bypass issues.

Marcos Henrique

☆

Web Application Security

Freddy

Burp Suite extension for finding and exploiting serialization vulnerabilities.

Marcos Henrique

☆

← Previous 1 2 3 Next →