security tool Archives • Penetration Testing Tools

COMmander: Unmasking Hidden Threats in Windows with Deep RPC/COM Monitoring RPC Monitoring

COMmander: Unmasking Hidden Threats in Windows with Deep RPC/COM Monitoring

ddos July 16, 2025

There is no shortage of protective tools today, yet unfortunately, the number of threats continues to outpace...

dAWShund: New Tool Suite to Visualize & Secure AWS IAM Permissions AWS IAM

dAWShund: New Tool Suite to Visualize & Secure AWS IAM Permissions

ddos July 2, 2025

Perhaps the most critical component of an AWS infrastructure is the policy document describing the actions allowed...

Jxscout: Unleash JavaScript’s Hidden Vulnerabilities with This Powerful Analysis Tool

ddos June 30, 2025

jxscout is a tool designed to help security researchers analyze and find vulnerabilities in JavaScript code. It works...

Kereva: Static analysis for LLM-powered Python applications LLM Security, Code Scanner

Kereva: Static analysis for LLM-powered Python applications

ddos June 18, 2025

Kereva LLM Code Scanner is a static analysis tool designed to identify potential security risks, performance issues,...

BFScan: Uncover Hidden URLs, Paths, & Secrets in JAR/WAR/APK Files Security Tool

BFScan: Uncover Hidden URLs, Paths, & Secrets in JAR/WAR/APK Files

ddos June 16, 2025

BFScan – Tool for initial processing of APK / XAPK / DEX / JAR / WAR applications....

Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams PowerShell Deobfuscation, Security Tool

Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams

ddos June 12, 2025

Plaguards is a cutting-edge security tool built to streamline and automate the deobfuscation of obfuscated PowerShell scripts,...

DetentionDodger: Unmasking Leaked Credentials & Their Organizational Impact

ddos June 8, 2025

DetentionDodger is a tool designed to find users whose credentials have been leaked/compromised and the impact they...

Boost Your GitHub Actions Security with sisakulint: Fast SAST for YAML

ddos June 7, 2025

In recent years, attacks targeting the Web Application Platform have been increasing rapidly. sisakulint is a static and...

FindGPPPasswords: Uncover Group Policy Preferences Passwords

ddos May 23, 2025

FindGPPPasswords A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using...

MailFail: Identify Email Misconfigurations in Your Browser Email misconfiguration tool

MailFail: Identify Email Misconfigurations in Your Browser

ddos May 19, 2025

MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain...

security tool

COMmander: Unmasking Hidden Threats in Windows with Deep RPC/COM Monitoring

Jxscout: Unleash JavaScript’s Hidden Vulnerabilities with This Powerful Analysis Tool

Kereva: Static analysis for LLM-powered Python applications

BFScan: Uncover Hidden URLs, Paths, & Secrets in JAR/WAR/APK Files

Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams

DetentionDodger: Unmasking Leaked Credentials & Their Organizational Impact

Boost Your GitHub Actions Security with sisakulint: Fast SAST for YAML

MailFail: Identify Email Misconfigurations in Your Browser

You may have missed

SAP Threat Modeling Tool: A New Open-Source Tool to Protect SAP Systems from Attack

Censys Reveals Governments Are Exploiting Its Research Program

Hackers Hit Brazilian Payments Giant in $130M Heist

Cyberattack Forces Jaguar Land Rover to Halt Production