![trophy](https://camo.githubusercontent.com/1209100c84e094e944e75d3db637f8073065b009f9c43dae0a4aca9f15ce97c5/68747470733a2f2f6769746875622d70726f66696c652d74726f7068792e76657263656c2e6170702f3f757365726e616d653d6c756973666f6e746573313926636f6c756d6e3d38267468656d653d6f6e656461726b)
TheSecurityVault is my blog, where I do some writing about web vulnerabilities, usually not that well known by most people
XXExploiter - Tool to help exploit XXE vulnerabilities. It generates the XML payloads, and automatically starts a server to serve the needed DTD's or to do data exfiltration.
CSRFER - Tool to generate csrf payloads based on vulnerable requests. It parses supplied requests to generate either a form or a fetch request. The payload can then be embedded in an html template.
VSCode Swissknife - Scriptable VSCode extension to generate or manipulate data. Stop pasting sensitive data in webpages.
DamnVulnerableCryptoApp - An app with really insecure crypto. To be used to see/test/exploit weak cryptographic implementations as well as to learn a little bit more about crypto, without the need to dive deep into the math behind it
The Combiner - Combines supplied words and generates a wordlist with all possible combinatios/permutations. Can also hash wordlist entries to look for an hash match
hash-identifier-js
Started as a port to javascript of the python project hash-identifier. Identifies the algorithm used to generate the supplied hash