Application Security Resources
A comprehensive resource site for testing all kinds of application security. The tools and the resources here help identify vulnerabilities.
Deobfuscate and analyze JavaScript code to identify hidden malicious patterns and improve code readability for security analysis.
Launch ToolScan for common security misconfigurations in Content Security Policy or Cookie Headers.
Launch ToolIdentify clickjacking vulnerabilities and grab data from passed windows.
Launch ToolTest for XML External Entity processing vulnerabilities that can lead to data disclosure and server-side attacks.
Launch ToolGenerate payloads for SSTI, SQL, NoSQL, OS Command, and LDAP injection testing.
Launch ToolComprehensive testing for reflected, stored, and DOM-based Cross-Site Scripting vulnerabilities with advanced payloads.
Launch ToolTest for Cross-Site Request Forgery vulnerabilities and evaluate your anti-CSRF token implementation.
Launch ToolIdentify Server-Side Request Forgery vulnerabilities that can lead to internal network access and data exfiltration.
Launch ToolGenerate raw request variants with smuggling-focused header and line-ending mutations.
Launch ToolGenerate regex patterns to match string variations including case changes, leet speak, and unicode lookalikes.
Launch ToolUniversal text translator with steganography, transforms, and payload mutation tooling.
Launch ToolFollows a structured approach based on OWASP Testing Guide and PTES standards: