Agarta - Generate Payloads for Injections, RCE etc.. JSON Web Tokens - Easily recode the token and modify the request. Burp Bounty - Authorize - check Broken Access Control AuthMatrix - Auth Priv Esc Checks Broken Link Hijacking - Active Scan ++ J2EEScan Hackvertor - used for encodings of various types Param Miner - GadgetProbe - https://github.com/BishopFox/GadgetProbe Comes with wordlist Java Deserialization Scanner IIS Tilde Enumeration Scanner - Finds IIS 8.3 Shortname Vuln Browser Extensions Wappalyzer EditThisCookie DotGit Shodan
Way to Divergence