Security Tools

Password Strength Checker

Evaluate the strength of your password against cracking attempts (Client-side only).

Password Generator

Generate strong, secure passwords instantly with customizable options.

Hash Generator

Calculate cryptographic hashes for any text string safely.

Base64 Encoder/Decoder

Convert text to Base64 or decode Base64 strings.

JWT Decoder

Decode and inspect JWTs without verifying the signature.

URL Encoder / Decoder

percent-encode or decode URLs efficiently.

Public IP Risk Exposure Checker

Understand what attackers can see from your IP (ASN, headers, etc.).

Password Policy Strength Sim

Analyze password policy text for entropy and compliance.

API Key Leak Detector

Scan config files for exposed secrets (AWS, Stripe, etc.) before committing.

Email Header Privacy Analyzer

Paste email headers to detect tracking bits, SPF, DKIM, and IP leaks.

JWT Risk Analyzer

Analyze JWTs for security flaws like 'none' algo, weak secrets, and sensitive data.

Cloud Misconfiguration Explainer

Input a cloud issue (e.g. 'Public S3') to understand impact and remediation.

HTTP Security Header Tool

Paste headers to see how they affect browser security features.

Clickjacking Poc

A new tool extracted from the codebase.

Cookie Security Analyzer

A new tool extracted from the codebase.

Cors Scanner

A new tool extracted from the codebase.

Crypto Visualizer

A new tool extracted from the codebase.

Csp Evaluator

A new tool extracted from the codebase.

File Upload Security

A new tool extracted from the codebase.

Secure Notes Gen

A new tool extracted from the codebase.

Security Dashboard

A new tool extracted from the codebase.

Xss Generator

A new tool extracted from the codebase.

OWASP Top 10 Self-Assessment

Interactive checklist to assess your application against OWASP Top 10 vulnerabilities.

Password Entropy Visualizer

Visual representation of password strength using entropy calculations and crack time estimates.

CSRF Risk Checker

Analyze forms and APIs for CSRF vulnerabilities and get remediation guidance.

XSS Payload Encoder

Encode XSS payloads for security testing (educational purposes only).

Header Security Analyzer

Scan HTTP headers for security misconfigurations and missing protections.

URL Reputation Scanner

Offline analysis of URL patterns for phishing and malicious indicators.

Malware Hash Checker

Check file hashes against known malware signatures (offline database).

Session Fixation Tester

Test session management for fixation vulnerabilities and weak configurations.

Access Control Matrix Generator

Generate role-based access control (RBAC) matrices for your application.

Phishing Risk Simulator

Simulate phishing scenarios to test security awareness and training effectiveness.

Brute Force Protection Estimator

Calculate time to crack passwords with different protection mechanisms.

Incident Severity Classifier

Classify security incidents by severity using industry-standard frameworks.

Security Misconfiguration Finder

Checklist-based tool to find common security misconfigurations in systems.

Threat Modeling Assistant

Guide users through STRIDE threat modeling process for applications.