OWASP Web Recon & Directory Discovery Platform

Automated web-based vulnerability scanner designed to identify common security flaws such as SQL Injection and XSS. WAVSS crawls websites, performs comprehensive scans, and generates detailed PDF reports with remediation guidance.

🛡️ Burp Suite extension for automated access control bypass, path traversal & Web Cache Deception testing. Header spoofing, URL encoding, cache deception pipelines – all in one tool.

🦄 All-in-one website intelligence tool. Replaces whois, whatmydns, wpscan & who.is in one free web app. Built for authorized security recon.

403‑Killchain fuses four independent bypass engines into a single, silent binary. Each engine uses a unique strategy to turn 403 Forbidden into 200 OK. They run in parallel, and the results are merged into one clear, actionable report. No more running multiple tools, no more missed tricks. One command, one killchain.

1 bilion % sure you web app has so much issue and i can find it easily ...

CYRASEC is a multi-engine web vulnerability scanner that combines tools like dirsearch and nuclei, using AI-assisted analysis to detect, prioritize, and report web security issues efficiently in one streamlined workflow.

Sentinel — Automated security assessment platform with local AI, CVE intelligence, and SOC monitoring. No API keys required.

Small scale locally deployable python projects for offensive and defensive security.

Python-based web vulnerability scanner with ML severity classification and a live Streamlit dashboard. Detects XSS, SQLi, open redirects, missing headers, and exposed directories.

Burp Suite Pro for web security testing and penetration testing. Analyze and identify vulnerabilities in web applications. 🔍💻