Current Projects

  • Nikto – An Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including vulnerabilities and misconfigurations.

  • Clickjack Testing – HTML pages to quickly test the validity of site framing/click-jacking.

  • DAVTest – Test and exploit WebDAV enabled servers.

  • pjl-file – A script to act like an FTP front end to PCL/PJL compatible printers.

  • SVN Pristine Extractor – For when people check out their subversion repo directly into web root.

  • Mercurial Extractor –  if you know the format of the binary files and somebody leaves the .hg file in place on a web root, you can extract pretty much all the files in the repository.

Dead Projects

  • SETI-Web – SETI@Home Web Statistics.

  • CMS Explorer – Discover plugins and themes installed on popular content management systems.

  • MP3 Duplicate Finder – Find MP3 file duplicates based on the audio content’s hash.