SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

Caddy WAF (Regex Rules, IP and DNS filtering, Rate Limiting, GeoIP, Tor, Anomaly Detection)

A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.

堡塔云WAF，宝塔免费(free)的私有云网站应用防火墙(firewall)，基于docker/nginx/lua开发

Caddy module to block or manipulate requests originating from AIs or cloud services trying to train on your websites

Black box fuzzer for web applications

Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist

The Most Advanced Client-Side Prototype Pollution Scanner

Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单的启动参数 | 包含多种反连可用 | 可执行文件体积仅 2 MB

perhaps the best CORS middleware library for Go

A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embedded in webpages, parsing resources like sitemaps and robots.txt files, and even processing local files - to uncover every URL.

An experimental CORS middleware library for Go. Consider using github.com/jub0bs/cors (its successor) instead.

A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.

CLI tool for fetching URLs from Wayback Machine, Common Crawl, and VirusTotal.

Highly customizable low-interaction experimental honeypot that mimics specific hosts.

urlyzer is a URL parsing analysis tool.

URL / IP / Email defanging with Golang. Make IoC harmless.

A Simple Golang Tool That Automates OSINT For Threat Intelligence And Mapping Your Attack Surface.

An interactive, OCR-resistant CAPTCHA puzzle written in Go, where users identify a missing letter in an 8x8 rhombus grid (proof of concept)

Tools suits for pentesters and for code reviewing