Pentesting toolset

Hi,
I’ve put up useful pentesting tools on https://forefy.com/
:memo:JWT resigner (that supports none,None,RS->HS downgrade vuln)
:artificial_satellite: HTTP request catcher to aid with blind XSS, XXE and more
:syringe: Chrome extension to passively look for secret keys and exposed buckets

Please let me know what you think!

1 Like

Hi @forefy. I got the following error when visiting: