SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐

An HTTP/HTTPS intercept proxy written in Go.

Scrape domain names from SSL certificates of arbitrary hosts

HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets

CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.

A tech enumeration toolkit focused on 404 Not found pages.

URL / IP / Email defanging with Golang. Make IoC harmless.

Simple, Ultra-fast file handling utility for text deduplication with unique features.

Tool to detect cache poisoning vulnerabilities in Web API Endpoints

Ease CSS exfiltration

Simple, fast, and efficient tool for decoding JWT tokens, supporting base64 and JSON Web Token (JWT) formats.

绿盟WEB应用防护系统WAF的辅助工具，对Web安全日志模块自动采集，并加入企业微信机器人自动发送告警信息

This App BruteForce Basic Auth Pages , Just For Education

FuzzGIU is a web fuzzer written in go, inspired by ffuf

This is some random notes i took while learning about web app security.

A powerful WAF (HTTP 403/401) and URL parser bypass tool developed in Go, designed to preserve exact URL paths and structures during testing.

A fast and efficient subdomain enumeration tool utilizing crt.sh to identify subdomains recursively.