TOOLS

Tool for encoding and decoding strings in Base64. Useful for working with binary data in text format.

Tool for validating and decoding JWT (JSON Web Tokens). View token contents and check their validity.

This tool allows you to encode or decode text using percent-encoding (URL encoding). Useful for debugging HTTP requests, query parameters, and payloads with special characters.

Enter a URL with a redirection parameter (e.g. ?url=, ?next=) and we will test it against common open redirect payloads.

This tool extracts domains from raw text or a full webpage. You can paste any text or enter a URL, and we'll extract all valid domains.

Find API keys, tokens, and sensitive data in JavaScript code. Perfect for bug bounty reconnaissance and security audits.

Analyze HTTP security headers to identify vulnerabilities and misconfigurations. Essential for web security audits.

Detect subdomains vulnerable to takeover attacks. Check for unclaimed services and DNS misconfigurations.