Web Application

Break that web application.

asset-count

CORS

Tool Description Directory
Corsy CORS Misconfiguration Scanner. last-commit opensource

Cross-Site Scripting

Tool Description Directory
XSS’OR XSS’OR - Hack with JavaScript. last-commit opensource
XSStrike Most advanced XSS scanner. last-commit opensource

CRLF

Tool Description Directory
CRLFSuite The most powerful CRLF injection (HTTP Response Splitting) scanner. last-commit opensource

CSRF

Tool Description Directory
Bolt CSRF Scanner. last-commit opensource

Databases

Tool Description Directory
sql-map Automatic SQL injection and database takeover tool. last-commit opensource

Directory Traversal

Tool Description Directory
slipit Utility for creating ZipSlip archives. last-commit opensource

Frameworks

Tool Description Directory
TIDoS HTTP Request Smuggling Detection Tool. last-commit opensource
tplmap Server-Side Template Injection and Code Injection Detection and Exploit Tool. last-commit opensource

Protocols

Tool Description Directory
http-request-smuggling HTTP Request Smuggling Detection Tool. last-commit opensource

SSL/TLS

Tool Description Directory
TLS-Scanner Assists in the evaluation of TLS Server configurations. last-commit opensource