Security Tools

Free client-side tools for pentesters, CTF players & security researchers. Nothing leaves your browser.

Reverse Shell Generator

Most Popular
50+ shells

Generate payloads for 50+ languages — Bash, Python, PHP, PowerShell, Java, Go, Ruby, and more. Bind shells, MSFVenom, HoaxShell, URL & Base64 encoding built-in.

Reverse & Bind shells
MSFVenom payloads
HoaxShell C2
URL & Base64 encoding
Shell Cheat Sheet
ExploitationCTFRed Team
Open

Hash Identifier

20+ hash types

Identify MD5, SHA-256, bcrypt, NTLM, WPA and 20+ hash types. Get exact Hashcat -m and John the Ripper --format= modes instantly.

20+ hash types
Hashcat modes
John the Ripper modes
Copy full commands
Hash reference table
CryptoCTFForensics
Open

Password Strength Checker

Real-time

Real-time entropy calculation, character variety checks, and estimated brute-force crack time. Nothing ever leaves your browser.

Entropy bits
Brute-force time
Character checks
Real-time feedback
100% client-side
AssessmentSecurity
Open

CVSS v3.1 Calculator

CVSS 3.1

Compute CVSS v3.1 Base, Temporal, and Environmental scores with a full metric breakdown. Industry-standard scoring aligned with CVE databases.

Base score
Temporal score
Environmental score
Full metric breakdown
Severity rating
AssessmentVulnerability
Open

Base64 Encoder / Decoder

Instant

Encode text to Base64 or decode Base64 back to plain text instantly. Supports UTF-8. Useful for CTFs, API payloads, and encoding credentials.

Encode & decode
UTF-8 support
One-click copy
Instant result
Client-side
EncodingCTF
Open