About

Cyber Toolbox is a small, growing collection of single-purpose web-security utilities. The goal is to make AppSec basics — security headers, common misconfigurations, exposure checks — fast to run and easy to explain.

Ground rules

• Only scan systems you own or have explicit permission to test.
• Tools refuse to scan private, loopback, or cloud-metadata addresses.
• All scans run server-side; nothing in the browser bypasses these guards.
• Findings are heuristics — verify before reporting.

Stack

Next.js (App Router) on Vercel, TypeScript, Tailwind. Each tool is a self-contained module — UI under app/tools/<id>, API under app/api/tools/<id>, registry entry in lib/tools/registry.ts.