cyberstars
cyberstars / target / web

Tools for web apps

HTTP/S applications and APIs.

74 tools indexed

Anamorpher

Image-scaling attacks for multi-modal LLMs.

ExploitFuzzWeb apps
PythonAGPL-3.0

AttackSurfaceMapper

Automated external attack-surface mapping.

ReconAutomateWeb appsNetworks
PythonGPL-3.0

Blackbird

Account search across 600+ networks.

ReconWeb apps
PythonMIT

BunkerWeb

Cloud-native open-source WAF.

MonitorHardenWeb appsCloud
PythonAGPL-3.0

Burp MCP Server

Drive Burp Suite from an LLM.

AutomateScanWeb apps
JavaApache-2.0

CORScanner

Fast CORS misconfig scanner.

ScanWeb apps
PythonGPL-3.0

CeWL

Custom wordlist generator.

ReconAutomateWeb apps
RubyGPL-2.0

Chaitin Xray

Web vulnerability scanner with custom POCs.

ScanWeb apps
Custom

Commix

OS command-injection exploitation.

ExploitScanWeb apps
PythonGPL-3.0

Cook

Wordlist framework for hackers.

ReconAutomateWeb appsNetworks
GoMIT

CyberChef

The cyber Swiss army knife.

AnalyzeAutomateWeb appsBinaries
JavaScriptApache-2.0

DOMPurify

Lightning-fast XSS sanitizer.

HardenWeb appsSource code
JavaScriptApache-2.0

Dalfox

Parameter-aware XSS scanner.

ScanFuzzWeb apps
GoMIT

Dirsearch

Advanced web path scanner.

FuzzReconWeb apps
PythonGPL-2.0

Evilginx2

Reverse-proxy phishing for MFA bypass.

InterceptExploitWeb appsEndpoints
GoBSD-3-Clause

Faraday

Open vulnerability management platform.

AutomateMonitorNetworksEndpoints
PythonGPL-3.0

Gobuster

Directory, DNS and vhost brute-forcer.

FuzzReconWeb appsNetworks
GoApache-2.0

Gopherus

Generate gopher:// SSRF payloads.

ExploitWeb apps
PythonMIT

Gophish

Open-source phishing toolkit.

AutomateExploitEndpointsWeb apps
GoMIT

Hetty

Open-source HTTP toolkit for sec research.

InterceptScanWeb apps
GoMIT

HostHunter

OSINT-driven hostname discovery.

ReconWeb appsNetworks
PythonApache-2.0

Katana

Next-generation crawling framework.

ReconScanWeb apps
GoMIT

Maigret

Username OSINT across 3000+ sites.

ReconWeb apps
PythonMIT