42 tools across 5 categories — free to start.
All-in-one passive + opt-in active scanner — feed a URL or a raw HTTP request and surface misconfigurations and vulnerabilities, graded by severity.
Aggregate subdomains from crt.sh, OTX, Shodan, CertSpotter & more.
Query registrar WHOIS records over port 43.
Passive open-port & CVE exposure lookup (Shodan InternetDB) plus ready-to-run nmap/naabu/rustscan commands — no scan traffic leaves our servers.
Resolve A/AAAA/CNAME/MX/NS/TXT/CAA, follow the CNAME chain, flag subdomain-takeover candidates and check SPF/DMARC + wildcard DNS.
Pull historical URLs from the Internet Archive, then mine parameters, subdomains and sensitive files for testing.
Turn a URL list into a visual site tree with sensitive-path/file highlighting, stats and export.
Bulk-probe hosts in parallel — status, redirects, title, tech stack, server, IP & timing — flags notable findings (dir listing, phpinfo, API docs) with filtering & export.
Batch-extract EXIF + IPTC + XMP metadata (GPS, device serials, owner, software) from uploaded images or remote URLs — with a leak summary & reverse-geocoded GPS.
Extract unique URLs from text or files.
Fetch a URL and grade its security headers.
Probe CORS ACAO/ACAC behavior with a spoofed Origin.
Expand CIDR ranges, netmask, host count.
AXFR test, SPF/DMARC/DKIM, DNSSEC & dangling-CNAME check.
Pull disallowed paths and sitemap URLs.
Detect server, CMS, frameworks & libraries.
Fetch & validate /.well-known/security.txt.
Grade Content-Security-Policy & CORS exposure.
Test a parameter for open-redirect & SSRF reflection.
Fingerprint unclaimed CNAMEs (S3, GitHub, Heroku…).
Search CVEs by product/keyword (CIRCL feed).
Flag weak cookie flags & risky JWT settings.
XSS / SQLi / LFI / SSTI payloads with encoders.
Reverse/bind shells in many languages + listener.
Identify hashes & build hashcat/john commands.
Build Google & GitHub recon dorks.
Generate nuclei / ffuf / sqlmap commands.
Generate vulnerability PoC reports (custom & template modes).
Convert IPs to hex / octal / decimal SSRF payloads.
Generate random numeric codes & strong passwords.
Curated XSS / SQLi / SSRF / CRLF / XXE payloads.
How to validate leaked API keys & tokens.
Convert a JSON body into a URL-encoded query string.
Format, validate and minify JSON.
Match/replace, sort, dedupe, line-filter, domain extract.
URL, Base64, HTML, hex & ROT13 encode/decode.
Decode & inspect JWT header, claims and expiry.
Generate & identify MD5/SHA hashes.