Free client-side tools for pentesters, CTF players & security researchers. Nothing leaves your browser.
Generate payloads for 50+ languages — Bash, Python, PHP, PowerShell, Java, Go, Ruby, and more. Bind shells, MSFVenom, HoaxShell, URL & Base64 encoding built-in.
Identify MD5, SHA-256, bcrypt, NTLM, WPA and 20+ hash types. Get exact Hashcat -m and John the Ripper --format= modes instantly.
Real-time entropy calculation, character variety checks, and estimated brute-force crack time. Nothing ever leaves your browser.
Compute CVSS v3.1 Base, Temporal, and Environmental scores with a full metric breakdown. Industry-standard scoring aligned with CVE databases.
Encode text to Base64 or decode Base64 back to plain text instantly. Supports UTF-8. Useful for CTFs, API payloads, and encoding credentials.