diff --git a/tools/api-response-status-code-explorer/docs/README.md b/tools/api-response-status-code-explorer/docs/README.md
new file mode 100644
index 0000000..1fd66e7
--- /dev/null
+++ b/tools/api-response-status-code-explorer/docs/README.md
@@ -0,0 +1,24 @@
+# API Response Status Code Explorer
+
+Complete reference for HTTP status codes with descriptions and use cases.
+
+## Features
+
+- Search status codes by number, name, or description
+- Filter by category (1xx, 2xx, 3xx, 4xx, 5xx)
+- Detailed information for each status code
+- Color-coded categories
+- Click for extended details and use cases
+
+## Usage
+
+1. Open index.html in your browser
+2. Search or filter by category
+3. Click any status code for detailed information
+4. Use as a quick reference guide
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/api-response-status-code-explorer/docs/screenshot.png b/tools/api-response-status-code-explorer/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/api-response-status-code-explorer/docs/screenshot.png differ
diff --git a/tools/api-response-status-code-explorer/index.html b/tools/api-response-status-code-explorer/index.html
new file mode 100644
index 0000000..1c32502
--- /dev/null
+++ b/tools/api-response-status-code-explorer/index.html
@@ -0,0 +1,216 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>API Response Status Code Explorer</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a1119; --panel:#111821; --text:#e5e7eb; --muted:#94a3b8; --accent:#3b82f6; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:linear-gradient(135deg,#0f1729 0%,#0a1119 100%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1600px; margin:0 auto; }
+    .search { margin-bottom:24px; }
+    input { width:100%; padding:14px; border-radius:10px; border:1px solid #1f2937; background:#0a1119; color:var(--text); font-size:16px; }
+    .categories { display:flex; gap:12px; margin:20px 0; flex-wrap:wrap; }
+    .cat-btn { padding:10px 18px; border:1px solid #1f2937; border-radius:8px; background:rgba(59,130,246,0.08); cursor:pointer; font-weight:600; transition:all 0.2s; }
+    .cat-btn:hover, .cat-btn.active { background:rgba(59,130,246,0.2); border-color:var(--accent); }
+    .codes { display:grid; grid-template-columns:repeat(auto-fill,minmax(300px,1fr)); gap:16px; }
+    .code-card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:12px; padding:18px; cursor:pointer; transition:all 0.2s; }
+    .code-card:hover { transform:translateY(-2px); box-shadow:0 8px 24px rgba(0,0,0,0.4); }
+    .code-num { font-size:32px; font-weight:800; margin-bottom:8px; }
+    .code-name { font-weight:700; font-size:16px; margin-bottom:6px; }
+    .code-desc { font-size:13px; color:var(--muted); line-height:1.5; }
+    .code-1xx .code-num { color:#3b82f6; }
+    .code-2xx .code-num { color:#22c55e; }
+    .code-3xx .code-num { color:#f59e0b; }
+    .code-4xx .code-num { color:#ef4444; }
+    .code-5xx .code-num { color:#a855f7; }
+    .modal { display:none; position:fixed; top:0; left:0; right:0; bottom:0; background:rgba(0,0,0,0.8); z-index:1000; align-items:center; justify-content:center; padding:20px; }
+    .modal.show { display:flex; }
+    .modal-content { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:32px; max-width:700px; width:100%; max-height:90vh; overflow-y:auto; }
+    .close { float:right; font-size:28px; cursor:pointer; color:var(--muted); }
+    .close:hover { color:var(--text); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>📡 API Response Status Code Explorer</h1>
+    <p class="subtitle">Complete reference for HTTP status codes with descriptions and use cases</p>
+  </header>
+
+  <main>
+    <div class="search">
+      <input id="search" type="text" placeholder="Search status codes (e.g., 404, not found, redirect)" oninput="filterCodes()" />
+    </div>
+
+    <div class="categories">
+      <div class="cat-btn active" data-cat="all" onclick="filterByCategory('all')">All</div>
+      <div class="cat-btn" data-cat="1xx" onclick="filterByCategory('1xx')">1xx Informational</div>
+      <div class="cat-btn" data-cat="2xx" onclick="filterByCategory('2xx')">2xx Success</div>
+      <div class="cat-btn" data-cat="3xx" onclick="filterByCategory('3xx')">3xx Redirection</div>
+      <div class="cat-btn" data-cat="4xx" onclick="filterByCategory('4xx')">4xx Client Error</div>
+      <div class="cat-btn" data-cat="5xx" onclick="filterByCategory('5xx')">5xx Server Error</div>
+    </div>
+
+    <div class="codes" id="codes"></div>
+  </main>
+
+  <div class="modal" id="modal" onclick="if(event.target===this) closeModal()">
+    <div class="modal-content">
+      <span class="close" onclick="closeModal()">&times;</span>
+      <div id="modalContent"></div>
+    </div>
+  </div>
+
+  <script>
+    const statusCodes = [
+      // 1xx Informational
+      { code: 100, name: 'Continue', desc: 'Client should continue with request', detail: 'The server has received the request headers and the client should proceed to send the request body. Used with Expect: 100-continue header.' },
+      { code: 101, name: 'Switching Protocols', desc: 'Server is switching protocols as requested', detail: 'Server acknowledges and agrees to switch protocols as requested by the client (e.g., upgrading to WebSocket).' },
+      { code: 102, name: 'Processing', desc: 'Server is processing the request', detail: 'WebDAV: Server has received and is processing the request, but no response is available yet.' },
+      { code: 103, name: 'Early Hints', desc: 'Used to return some response headers', detail: 'Allows server to send preliminary hints while preparing the full response, primarily for preloading resources.' },
+
+      // 2xx Success
+      { code: 200, name: 'OK', desc: 'Request succeeded', detail: 'Standard response for successful HTTP requests. The actual response will depend on the request method used.' },
+      { code: 201, name: 'Created', desc: 'Resource was created', detail: 'Request has been fulfilled and resulted in a new resource being created. Common for POST requests.' },
+      { code: 202, name: 'Accepted', desc: 'Request accepted for processing', detail: 'Request has been accepted but processing has not been completed. Used for async operations.' },
+      { code: 203, name: 'Non-Authoritative Info', desc: 'Transforming proxy modified response', detail: 'Server successfully processed request but is returning information from another source.' },
+      { code: 204, name: 'No Content', desc: 'Success but no content to return', detail: 'Server successfully processed request but returns no content. Common for DELETE requests.' },
+      { code: 205, name: 'Reset Content', desc: 'Reset the document view', detail: 'Server successfully processed request and asks client to reset document view (e.g., clear form).' },
+      { code: 206, name: 'Partial Content', desc: 'Partial GET was successful', detail: 'Server is delivering only part of the resource due to a range header sent by the client.' },
+
+      // 3xx Redirection
+      { code: 300, name: 'Multiple Choices', desc: 'Multiple options available', detail: 'Multiple response options for the resource. User or client should choose one of them.' },
+      { code: 301, name: 'Moved Permanently', desc: 'Resource permanently moved', detail: 'Requested resource has been permanently moved to the URL given by Location header. Future requests should use new URL.' },
+      { code: 302, name: 'Found', desc: 'Resource temporarily moved', detail: 'Resource temporarily resides under a different URL. Client should continue to use original URL for future requests.' },
+      { code: 303, name: 'See Other', desc: 'Response found at another URI', detail: 'Response can be found under a different URI and should be retrieved using GET. Used after POST to prevent resubmission.' },
+      { code: 304, name: 'Not Modified', desc: 'Resource not modified', detail: 'Resource has not been modified since last requested. Can use cached version.' },
+      { code: 307, name: 'Temporary Redirect', desc: 'Request should be repeated', detail: 'Request should be repeated with another URI, but future requests should still use original URI. Preserves HTTP method.' },
+      { code: 308, name: 'Permanent Redirect', desc: 'Resource permanently moved', detail: 'Request and all future requests should be repeated using another URI. Preserves HTTP method.' },
+
+      // 4xx Client Errors
+      { code: 400, name: 'Bad Request', desc: 'Server cannot process request', detail: 'Server cannot or will not process request due to client error (e.g., malformed syntax, invalid routing).' },
+      { code: 401, name: 'Unauthorized', desc: 'Authentication required', detail: 'Request requires user authentication. Similar to 403 but specifically for auth cases.' },
+      { code: 402, name: 'Payment Required', desc: 'Reserved for future use', detail: 'Reserved for future use with digital payment systems.' },
+      { code: 403, name: 'Forbidden', desc: 'Server refuses to fulfill', detail: 'Server understood request but refuses to authorize it. Unlike 401, authentication will not help.' },
+      { code: 404, name: 'Not Found', desc: 'Resource not found', detail: 'Requested resource could not be found but may be available again in the future.' },
+      { code: 405, name: 'Method Not Allowed', desc: 'Method not allowed for resource', detail: 'Request method is not supported for the requested resource (e.g., POST on read-only resource).' },
+      { code: 406, name: 'Not Acceptable', desc: 'Resource not acceptable', detail: 'Requested resource is only capable of generating content not acceptable according to Accept headers.' },
+      { code: 407, name: 'Proxy Auth Required', desc: 'Proxy authentication required', detail: 'Client must first authenticate with the proxy.' },
+      { code: 408, name: 'Request Timeout', desc: 'Server timed out waiting', detail: 'Server timed out waiting for the request from client.' },
+      { code: 409, name: 'Conflict', desc: 'Request conflicts with resource', detail: 'Request conflicts with current state of the server (e.g., version conflict).' },
+      { code: 410, name: 'Gone', desc: 'Resource no longer available', detail: 'Resource is no longer available and will not be available again. Should be used when resource is intentionally removed.' },
+      { code: 411, name: 'Length Required', desc: 'Content-Length required', detail: 'Request did not specify the length of its content, which is required.' },
+      { code: 412, name: 'Precondition Failed', desc: 'Precondition failed', detail: 'Server does not meet one of the preconditions specified in request headers.' },
+      { code: 413, name: 'Payload Too Large', desc: 'Request entity too large', detail: 'Request is larger than the server is willing or able to process.' },
+      { code: 414, name: 'URI Too Long', desc: 'URI too long', detail: 'URI provided was too long for the server to process.' },
+      { code: 415, name: 'Unsupported Media Type', desc: 'Media type not supported', detail: 'Request entity has a media type which server does not support.' },
+      { code: 416, name: 'Range Not Satisfiable', desc: 'Range cannot be satisfied', detail: 'Client has asked for portion of file but server cannot supply that portion.' },
+      { code: 417, name: 'Expectation Failed', desc: 'Expectation cannot be met', detail: 'Server cannot meet requirements of Expect request-header field.' },
+      { code: 418, name: "I'm a teapot", desc: 'April Fools joke (RFC 2324)', detail: "Any attempt to brew coffee with a teapot should result in error code 418. This is an April Fools' joke from 1998." },
+      { code: 422, name: 'Unprocessable Entity', desc: 'Validation errors', detail: 'Request was well-formed but contains semantic errors (e.g., validation errors).' },
+      { code: 423, name: 'Locked', desc: 'Resource is locked', detail: 'Resource being accessed is locked.' },
+      { code: 424, name: 'Failed Dependency', desc: 'Request failed due to dependency', detail: 'Request failed due to failure of a previous request.' },
+      { code: 425, name: 'Too Early', desc: 'Server unwilling to process', detail: 'Server is unwilling to risk processing a request that might be replayed.' },
+      { code: 426, name: 'Upgrade Required', desc: 'Client should switch protocols', detail: 'Client should switch to a different protocol given in Upgrade header field.' },
+      { code: 428, name: 'Precondition Required', desc: 'Request must be conditional', detail: 'Origin server requires request to be conditional to prevent lost update problem.' },
+      { code: 429, name: 'Too Many Requests', desc: 'User sent too many requests', detail: 'User has sent too many requests in a given amount of time (rate limiting).' },
+      { code: 431, name: 'Header Fields Too Large', desc: 'Headers too large', detail: 'Server unwilling to process request because header fields are too large.' },
+      { code: 451, name: 'Unavailable For Legal Reasons', desc: 'Content censored', detail: 'Resource is unavailable due to legal reasons (e.g., government censorship).' },
+
+      // 5xx Server Errors
+      { code: 500, name: 'Internal Server Error', desc: 'Generic server error', detail: 'Generic error message when server encounters unexpected condition.' },
+      { code: 501, name: 'Not Implemented', desc: 'Server lacks capability', detail: 'Server does not recognize request method or lacks ability to fulfill it.' },
+      { code: 502, name: 'Bad Gateway', desc: 'Invalid response from upstream', detail: 'Server acting as gateway received invalid response from upstream server.' },
+      { code: 503, name: 'Service Unavailable', desc: 'Server temporarily unavailable', detail: 'Server temporarily unable to handle request (overload or maintenance). Use Retry-After header.' },
+      { code: 504, name: 'Gateway Timeout', desc: 'Gateway timeout', detail: 'Server acting as gateway did not receive timely response from upstream server.' },
+      { code: 505, name: 'HTTP Version Not Supported', desc: 'HTTP version not supported', detail: 'Server does not support HTTP protocol version used in request.' },
+      { code: 506, name: 'Variant Also Negotiates', desc: 'Configuration error', detail: 'Transparent content negotiation for request results in circular reference.' },
+      { code: 507, name: 'Insufficient Storage', desc: 'Server out of storage', detail: 'Server is unable to store the representation needed to complete request.' },
+      { code: 508, name: 'Loop Detected', desc: 'Infinite loop detected', detail: 'Server detected an infinite loop while processing request.' },
+      { code: 510, name: 'Not Extended', desc: 'Extensions required', detail: 'Further extensions to the request are required for server to fulfill it.' },
+      { code: 511, name: 'Network Auth Required', desc: 'Network authentication required', detail: 'Client needs to authenticate to gain network access.' }
+    ];
+
+    let currentCategory = 'all';
+
+    function renderCodes() {
+      const search = document.getElementById('search').value.toLowerCase();
+      const filtered = statusCodes.filter(code => {
+        const matchesSearch = search === '' ||
+          code.code.toString().includes(search) ||
+          code.name.toLowerCase().includes(search) ||
+          code.desc.toLowerCase().includes(search);
+
+        const matchesCategory = currentCategory === 'all' ||
+          code.code.toString().startsWith(currentCategory[0]);
+
+        return matchesSearch && matchesCategory;
+      });
+
+      const html = filtered.map(code => {
+        const category = `code-${code.code.toString()[0]}xx`;
+        return `<div class="code-card ${category}" onclick="showDetail(${code.code})">
+          <div class="code-num">${code.code}</div>
+          <div class="code-name">${code.name}</div>
+          <div class="code-desc">${code.desc}</div>
+        </div>`;
+      }).join('');
+
+      document.getElementById('codes').innerHTML = html || '<p style="color:var(--muted);grid-column:1/-1;text-align:center;padding:40px;">No matching status codes found</p>';
+    }
+
+    function filterCodes() {
+      renderCodes();
+    }
+
+    function filterByCategory(cat) {
+      currentCategory = cat;
+      document.querySelectorAll('.cat-btn').forEach(btn => {
+        btn.classList.toggle('active', btn.dataset.cat === cat);
+      });
+      renderCodes();
+    }
+
+    function showDetail(code) {
+      const status = statusCodes.find(s => s.code === code);
+      if (!status) return;
+
+      const category = `code-${code.toString()[0]}xx`;
+      const html = `
+        <div class="${category}">
+          <div class="code-num" style="font-size:48px;">${status.code}</div>
+          <div class="code-name" style="font-size:24px;margin:12px 0;">${status.name}</div>
+          <div class="code-desc" style="font-size:16px;margin:16px 0;color:var(--text);">${status.desc}</div>
+          <div style="background:#0a1119;border:1px solid #1f2937;border-radius:8px;padding:16px;margin-top:20px;">
+            <h3 style="margin:0 0 12px;">Details</h3>
+            <p style="color:var(--muted);line-height:1.6;margin:0;">${status.detail}</p>
+          </div>
+          <div style="background:#0a1119;border:1px solid #1f2937;border-radius:8px;padding:16px;margin-top:16px;">
+            <h3 style="margin:0 0 12px;">Example Response</h3>
+            <pre style="background:#000;padding:12px;border-radius:6px;overflow-x:auto;margin:0;"><code>HTTP/1.1 ${status.code} ${status.name}
+Content-Type: application/json
+
+{
+  "error": "${status.name}",
+  "message": "${status.desc}"
+}</code></pre>
+          </div>
+        </div>
+      `;
+
+      document.getElementById('modalContent').innerHTML = html;
+      document.getElementById('modal').classList.add('show');
+    }
+
+    function closeModal() {
+      document.getElementById('modal').classList.remove('show');
+    }
+
+    renderCodes();
+  </script>
+</body>
+</html>
diff --git a/tools/bash-command-alias-generator/docs/README.md b/tools/bash-command-alias-generator/docs/README.md
new file mode 100644
index 0000000..5c53dd6
--- /dev/null
+++ b/tools/bash-command-alias-generator/docs/README.md
@@ -0,0 +1,26 @@
+# Bash Command Alias Generator
+
+Create, organize, and export shell aliases with templates and best practices.
+
+## Features
+
+- Quick templates for Git, Docker, Navigation, and System commands
+- Create custom aliases with descriptions
+- Real-time preview of generated .bashrc/.zshrc
+- Export to clipboard or file
+- Syntax validation
+- Manage multiple aliases at once
+
+## Usage
+
+1. Choose a template or create custom alias
+2. Enter alias name and command
+3. Add optional description
+4. Review generated configuration
+5. Copy to clipboard or download
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/bash-command-alias-generator/docs/screenshot.png b/tools/bash-command-alias-generator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/bash-command-alias-generator/docs/screenshot.png differ
diff --git a/tools/bash-command-alias-generator/index.html b/tools/bash-command-alias-generator/index.html
new file mode 100644
index 0000000..2c9d19f
--- /dev/null
+++ b/tools/bash-command-alias-generator/index.html
@@ -0,0 +1,270 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Bash Command Alias Generator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0f0a1e; --panel:#1a1129; --text:#e5e7eb; --muted:#94a3b8; --accent:#f59e0b; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:linear-gradient(135deg,#1a0a2e 0%,#0f0514 100%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; display:grid; grid-template-columns:repeat(auto-fit,minmax(400px,1fr)); gap:20px; max-width:1800px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, textarea, select { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0a0515; color:var(--text); font-size:14px; font-family:'Fira Code',monospace; }
+    textarea { min-height:100px; resize:vertical; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#f59e0b,#d97706); color:#000; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(245,158,11,0.3); }
+    button:hover { transform:translateY(-1px); }
+    button.secondary { background:linear-gradient(135deg,#8b5cf6,#7c3aed); color:#fff; box-shadow:0 8px 24px rgba(139,92,246,0.3); }
+    pre { background:#0a0515; border:1px solid #1f2937; border-radius:10px; padding:16px; min-height:250px; max-height:500px; overflow-y:auto; font-family:'Fira Code',monospace; font-size:13px; line-height:1.8; }
+    .alias-item { background:#0a0515; border:1px solid #1f2937; border-radius:8px; padding:12px; margin:8px 0; display:flex; justify-content:space-between; align-items:start; gap:10px; }
+    .alias-name { font-weight:700; color:var(--accent); margin-bottom:4px; }
+    .alias-cmd { color:var(--muted); font-size:13px; font-family:'Fira Code',monospace; }
+    .template-grid { display:grid; grid-template-columns:repeat(auto-fit,minmax(130px,1fr)); gap:8px; margin-top:8px; }
+    .template-btn { padding:10px; border:1px solid #1f2937; border-radius:8px; background:rgba(245,158,11,0.08); cursor:pointer; font-size:12px; text-align:center; transition:all 0.2s; }
+    .template-btn:hover { background:rgba(245,158,11,0.15); border-color:var(--accent); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>⚡ Bash Command Alias Generator</h1>
+    <p class="subtitle">Create, organize, and export shell aliases with templates and best practices</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Create Alias</h2>
+
+      <label>Quick Templates</label>
+      <div class="template-grid">
+        <div class="template-btn" onclick="loadTemplate('git')">Git Shortcuts</div>
+        <div class="template-btn" onclick="loadTemplate('docker')">Docker</div>
+        <div class="template-btn" onclick="loadTemplate('nav')">Navigation</div>
+        <div class="template-btn" onclick="loadTemplate('system')">System</div>
+      </div>
+
+      <label for="aliasName">Alias Name</label>
+      <input id="aliasName" type="text" placeholder="e.g., ll, gst, dps" />
+
+      <label for="aliasCommand">Command</label>
+      <textarea id="aliasCommand" placeholder="e.g., ls -lah&#10;git status&#10;docker ps -a"></textarea>
+
+      <label for="aliasDesc">Description (optional)</label>
+      <input id="aliasDesc" type="text" placeholder="What this alias does" style="font-family:inherit;" />
+
+      <button onclick="addAlias()">Add Alias</button>
+    </section>
+
+    <section class="card">
+      <h2>Your Aliases (<span id="count">0</span>)</h2>
+      <div id="aliasList" style="max-height:400px;overflow-y:auto;"></div>
+      <button class="secondary" onclick="clearAll()">Clear All</button>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Generated .bashrc / .zshrc</h2>
+      <pre id="output"># No aliases added yet
+# Add aliases using the form above</pre>
+      <div style="display:grid;grid-template-columns:1fr 1fr 1fr;gap:10px;">
+        <button class="secondary" onclick="copyOutput()">📋 Copy to Clipboard</button>
+        <button class="secondary" onclick="downloadOutput()">💾 Download .bashrc</button>
+        <button class="secondary" onclick="testAlias()">🧪 Test Syntax</button>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    let aliases = [];
+
+    const templates = {
+      git: [
+        { name: 'gs', cmd: 'git status', desc: 'Git status' },
+        { name: 'ga', cmd: 'git add .', desc: 'Git add all' },
+        { name: 'gc', cmd: 'git commit -m', desc: 'Git commit with message' },
+        { name: 'gp', cmd: 'git push', desc: 'Git push' },
+        { name: 'gl', cmd: 'git log --oneline --graph --decorate', desc: 'Pretty git log' },
+        { name: 'gd', cmd: 'git diff', desc: 'Git diff' },
+        { name: 'gco', cmd: 'git checkout', desc: 'Git checkout' },
+        { name: 'gb', cmd: 'git branch', desc: 'List branches' }
+      ],
+      docker: [
+        { name: 'dps', cmd: 'docker ps', desc: 'List running containers' },
+        { name: 'dpsa', cmd: 'docker ps -a', desc: 'List all containers' },
+        { name: 'di', cmd: 'docker images', desc: 'List images' },
+        { name: 'dex', cmd: 'docker exec -it', desc: 'Execute in container' },
+        { name: 'dlog', cmd: 'docker logs -f', desc: 'Follow container logs' },
+        { name: 'dcp', cmd: 'docker-compose', desc: 'Docker compose shorthand' },
+        { name: 'dcup', cmd: 'docker-compose up -d', desc: 'Compose up detached' },
+        { name: 'dcdown', cmd: 'docker-compose down', desc: 'Compose down' }
+      ],
+      nav: [
+        { name: 'll', cmd: 'ls -lah', desc: 'List all files with details' },
+        { name: 'la', cmd: 'ls -A', desc: 'List all files' },
+        { name: '..', cmd: 'cd ..', desc: 'Go up one directory' },
+        { name: '...', cmd: 'cd ../..', desc: 'Go up two directories' },
+        { name: '....', cmd: 'cd ../../..', desc: 'Go up three directories' },
+        { name: 'h', cmd: 'cd ~', desc: 'Go to home directory' }
+      ],
+      system: [
+        { name: 'c', cmd: 'clear', desc: 'Clear terminal' },
+        { name: 'myip', cmd: 'curl ifconfig.me', desc: 'Get public IP' },
+        { name: 'ports', cmd: 'netstat -tulanp', desc: 'Show open ports' },
+        { name: 'meminfo', cmd: 'free -h', desc: 'Memory information' },
+        { name: 'diskspace', cmd: 'df -h', desc: 'Disk space usage' },
+        { name: 'psg', cmd: 'ps aux | grep -v grep | grep -i -e VSZ -e', desc: 'Process search' }
+      ]
+    };
+
+    function loadTemplate(type) {
+      const template = templates[type];
+      aliases = [...aliases, ...template.filter(t => !aliases.find(a => a.name === t.name))];
+      render();
+    }
+
+    function addAlias() {
+      const name = document.getElementById('aliasName').value.trim();
+      const cmd = document.getElementById('aliasCommand').value.trim();
+      const desc = document.getElementById('aliasDesc').value.trim();
+
+      if (!name || !cmd) {
+        alert('Alias name and command are required');
+        return;
+      }
+
+      if (!/^[a-z0-9_.-]+$/i.test(name)) {
+        alert('Alias name should only contain letters, numbers, underscores, dots, and hyphens');
+        return;
+      }
+
+      if (aliases.find(a => a.name === name)) {
+        if (!confirm(`Alias "${name}" already exists. Replace it?`)) {
+          return;
+        }
+        aliases = aliases.filter(a => a.name !== name);
+      }
+
+      aliases.push({ name, cmd, desc });
+
+      document.getElementById('aliasName').value = '';
+      document.getElementById('aliasCommand').value = '';
+      document.getElementById('aliasDesc').value = '';
+
+      render();
+    }
+
+    function removeAlias(name) {
+      aliases = aliases.filter(a => a.name !== name);
+      render();
+    }
+
+    function clearAll() {
+      if (aliases.length === 0) return;
+      if (confirm('Clear all aliases?')) {
+        aliases = [];
+        render();
+      }
+    }
+
+    function render() {
+      document.getElementById('count').textContent = aliases.length;
+
+      const listEl = document.getElementById('aliasList');
+      if (aliases.length === 0) {
+        listEl.innerHTML = '<div style="color:var(--muted);padding:12px;">No aliases added yet</div>';
+      } else {
+        listEl.innerHTML = aliases.map(a =>
+          `<div class="alias-item">
+            <div style="flex:1;">
+              <div class="alias-name">${a.name}</div>
+              <div class="alias-cmd">${a.cmd}</div>
+              ${a.desc ? `<div style="font-size:12px;color:var(--muted);margin-top:4px;">${a.desc}</div>` : ''}
+            </div>
+            <button style="padding:4px 10px;font-size:12px;margin:0;width:auto;" onclick="removeAlias('${a.name}')">✕</button>
+          </div>`
+        ).join('');
+      }
+
+      let output = '';
+      if (aliases.length === 0) {
+        output = '# No aliases added yet\n# Add aliases using the form above';
+      } else {
+        output = '#!/bin/bash\n# Generated by Bash Command Alias Generator\n# Add this to your ~/.bashrc or ~/.zshrc\n\n';
+        output += '# ===== Custom Aliases =====\n\n';
+
+        aliases.forEach(a => {
+          if (a.desc) {
+            output += `# ${a.desc}\n`;
+          }
+          const needsQuotes = a.cmd.includes(' ') || a.cmd.includes('|') || a.cmd.includes('>');
+          output += `alias ${a.name}='${a.cmd}'\n\n`;
+        });
+
+        output += '# To apply changes, run: source ~/.bashrc\n';
+        output += '# Or for zsh: source ~/.zshrc';
+      }
+
+      document.getElementById('output').textContent = output;
+    }
+
+    function copyOutput() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    function downloadOutput() {
+      const text = document.getElementById('output').textContent;
+      const blob = new Blob([text], { type: 'text/plain' });
+      const url = URL.createObjectURL(blob);
+      const a = document.createElement('a');
+      a.href = url;
+      a.download = 'aliases.sh';
+      a.click();
+      URL.revokeObjectURL(url);
+    }
+
+    function testAlias() {
+      const issues = [];
+      const warnings = [];
+
+      aliases.forEach(a => {
+        if (a.name.length === 1) {
+          warnings.push(`"${a.name}" is very short - might conflict with built-in commands`);
+        }
+
+        const builtins = ['cd', 'ls', 'cp', 'mv', 'rm', 'mkdir', 'cat', 'echo', 'pwd'];
+        if (builtins.includes(a.name)) {
+          warnings.push(`"${a.name}" overrides a built-in command`);
+        }
+
+        if (a.cmd.includes('sudo rm -rf')) {
+          issues.push(`"${a.name}" contains dangerous command (sudo rm -rf)`);
+        }
+
+        if (a.cmd.includes('&&') || a.cmd.includes(';')) {
+          warnings.push(`"${a.name}" chains multiple commands - ensure proper error handling`);
+        }
+      });
+
+      let msg = '';
+      if (issues.length === 0 && warnings.length === 0) {
+        msg = '✅ All aliases look good!\n\nTo use:\n1. Copy or download the aliases\n2. Add to ~/.bashrc or ~/.zshrc\n3. Run: source ~/.bashrc (or ~/.zshrc)\n4. Test with: type <alias_name>';
+      } else {
+        if (issues.length > 0) {
+          msg += '❌ Critical Issues:\n' + issues.map(i => `  • ${i}`).join('\n') + '\n\n';
+        }
+        if (warnings.length > 0) {
+          msg += '⚠️ Warnings:\n' + warnings.map(w => `  • ${w}`).join('\n');
+        }
+      }
+
+      alert(msg);
+    }
+
+    render();
+  </script>
+</body>
+</html>
diff --git a/tools/codec-converter-chain/docs/README.md b/tools/codec-converter-chain/docs/README.md
new file mode 100644
index 0000000..6f1705b
--- /dev/null
+++ b/tools/codec-converter-chain/docs/README.md
@@ -0,0 +1,27 @@
+# Codec Converter Chain
+
+Chain multiple encoding/decoding operations: Base64, URL, HTML, Hex, UTF-8, and more.
+
+## Features
+
+- Chain multiple codec operations
+- Quick presets for common tasks
+- Support for encoding: Base64, URL, HTML, Hex, Unicode
+- Support for decoding: Base64, URL, HTML, Hex, Unicode
+- Hashing: MD5, SHA-1, SHA-256
+- Real-time conversion with visual chain display
+- Copy or download results
+
+## Usage
+
+1. Enter input text
+2. Select a quick preset or build custom chain
+3. Add multiple operations in sequence
+4. View results after each step
+5. Copy or download final output
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/codec-converter-chain/docs/screenshot.png b/tools/codec-converter-chain/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/codec-converter-chain/docs/screenshot.png differ
diff --git a/tools/codec-converter-chain/index.html b/tools/codec-converter-chain/index.html
new file mode 100644
index 0000000..bad3b7a
--- /dev/null
+++ b/tools/codec-converter-chain/index.html
@@ -0,0 +1,261 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Codec Converter Chain</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a1119; --panel:#0f1722; --text:#e5e7eb; --muted:#94a3b8; --accent:#06b6d4; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 20% 30%,#1a2f3f,#0a1119 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1800px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); margin-bottom:20px; }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    textarea { width:100%; min-height:150px; padding:14px; border-radius:10px; border:1px solid #1f2937; background:#0a1119; color:var(--text); font-size:14px; font-family:'Fira Code',monospace; resize:vertical; }
+    select { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0a1119; color:var(--text); font-size:14px; cursor:pointer; }
+    button { margin-top:14px; padding:13px 24px; border:none; border-radius:10px; background:linear-gradient(135deg,#06b6d4,#0891b2); color:#000; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(6,182,212,0.3); }
+    button:hover { transform:translateY(-1px); }
+    button.secondary { background:linear-gradient(135deg,#8b5cf6,#7c3aed); color:#fff; box-shadow:0 8px 24px rgba(139,92,246,0.3); }
+    .chain { display:flex; align-items:center; gap:12px; margin:20px 0; flex-wrap:wrap; }
+    .chain-item { background:#0f1722; border:1px solid #1f2937; border-radius:8px; padding:12px 16px; font-weight:600; }
+    .chain-arrow { color:var(--accent); font-size:24px; }
+    .preset-grid { display:grid; grid-template-columns:repeat(auto-fit,minmax(180px,1fr)); gap:10px; margin:16px 0; }
+    .preset-btn { padding:12px; border:1px solid #1f2937; border-radius:8px; background:rgba(6,182,212,0.08); cursor:pointer; text-align:center; transition:all 0.2s; font-size:14px; font-weight:600; }
+    .preset-btn:hover { background:rgba(6,182,212,0.15); border-color:var(--accent); }
+    pre { background:#0a1119; border:1px solid #1f2937; border-radius:10px; padding:16px; min-height:150px; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; white-space:pre-wrap; word-break:break-all; }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🔄 Codec Converter Chain</h1>
+    <p class="subtitle">Chain multiple encoding/decoding operations: Base64, URL, HTML, Hex, UTF-8, and more</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Input</h2>
+      <label for="input">Enter text to encode/decode</label>
+      <textarea id="input" placeholder="Enter your text here...">Hello, World!</textarea>
+    </section>
+
+    <section class="card">
+      <h2>Conversion Chain</h2>
+
+      <label>Quick Presets</label>
+      <div class="preset-grid">
+        <div class="preset-btn" onclick="applyPreset('url')">URL Encode</div>
+        <div class="preset-btn" onclick="applyPreset('base64')">Base64 Encode</div>
+        <div class="preset-btn" onclick="applyPreset('hex')">Hex Encode</div>
+        <div class="preset-btn" onclick="applyPreset('html')">HTML Encode</div>
+        <div class="preset-btn" onclick="applyPreset('jwt')">JWT Decode</div>
+        <div class="preset-btn" onclick="applyPreset('double')">Double Base64</div>
+      </div>
+
+      <label>Build Custom Chain</label>
+      <div id="chain" class="chain"></div>
+
+      <select id="operation">
+        <option value="">-- Select Operation --</option>
+        <optgroup label="Encoding">
+          <option value="base64-encode">Base64 Encode</option>
+          <option value="url-encode">URL Encode</option>
+          <option value="html-encode">HTML Encode</option>
+          <option value="hex-encode">Hex Encode</option>
+          <option value="unicode-encode">Unicode Encode</option>
+        </optgroup>
+        <optgroup label="Decoding">
+          <option value="base64-decode">Base64 Decode</option>
+          <option value="url-decode">URL Decode</option>
+          <option value="html-decode">HTML Decode</option>
+          <option value="hex-decode">Hex Decode</option>
+          <option value="unicode-decode">Unicode Decode</option>
+        </optgroup>
+        <optgroup label="Hashing">
+          <option value="md5">MD5 Hash</option>
+          <option value="sha1">SHA-1 Hash</option>
+          <option value="sha256">SHA-256 Hash</option>
+        </optgroup>
+        <optgroup label="Transform">
+          <option value="uppercase">Uppercase</option>
+          <option value="lowercase">Lowercase</option>
+          <option value="reverse">Reverse</option>
+          <option value="rot13">ROT13</option>
+        </optgroup>
+      </select>
+
+      <div style="display:grid;grid-template-columns:1fr 1fr;gap:10px;">
+        <button onclick="addOperation()">Add to Chain</button>
+        <button class="secondary" onclick="clearChain()">Clear Chain</button>
+      </div>
+
+      <button onclick="convert()" style="width:100%;">▶️ Execute Chain</button>
+    </section>
+
+    <section class="card">
+      <h2>Output</h2>
+      <pre id="output">Execute the chain to see results</pre>
+      <button onclick="copyOutput()">📋 Copy Output</button>
+      <button class="secondary" onclick="swapInputOutput()">🔄 Use as Input</button>
+    </section>
+
+    <section class="card">
+      <h2>Step-by-Step Results</h2>
+      <div id="steps"></div>
+    </section>
+  </main>
+
+  <script>
+    let operations = [];
+
+    const presets = {
+      url: ['url-encode'],
+      base64: ['base64-encode'],
+      hex: ['hex-encode'],
+      html: ['html-encode'],
+      jwt: ['base64-decode', 'base64-decode'],
+      double: ['base64-encode', 'base64-encode']
+    };
+
+    function applyPreset(type) {
+      operations = presets[type] || [];
+      renderChain();
+      convert();
+    }
+
+    function addOperation() {
+      const op = document.getElementById('operation').value;
+      if (!op) {
+        alert('Select an operation first');
+        return;
+      }
+      operations.push(op);
+      document.getElementById('operation').value = '';
+      renderChain();
+    }
+
+    function removeOperation(index) {
+      operations.splice(index, 1);
+      renderChain();
+    }
+
+    function clearChain() {
+      operations = [];
+      renderChain();
+      document.getElementById('output').textContent = 'Execute the chain to see results';
+      document.getElementById('steps').innerHTML = '';
+    }
+
+    function renderChain() {
+      if (operations.length === 0) {
+        document.getElementById('chain').innerHTML = '<div style="color:var(--muted);">No operations in chain</div>';
+        return;
+      }
+
+      let html = '';
+      operations.forEach((op, i) => {
+        html += `<div class="chain-item">${op} <button onclick="removeOperation(${i})" style="margin-left:8px;padding:2px 8px;background:#dc2626;border:none;border-radius:4px;color:#fff;cursor:pointer;">✕</button></div>`;
+        if (i < operations.length - 1) {
+          html += `<div class="chain-arrow">→</div>`;
+        }
+      });
+
+      document.getElementById('chain').innerHTML = html;
+    }
+
+    async function convert() {
+      let text = document.getElementById('input').value;
+      const steps = [];
+
+      steps.push({ step: 'Input', result: text });
+
+      for (const op of operations) {
+        try {
+          text = await applyOperation(text, op);
+          steps.push({ step: op, result: text });
+        } catch (e) {
+          steps.push({ step: op, result: `Error: ${e.message}`, error: true });
+          break;
+        }
+      }
+
+      document.getElementById('output').textContent = text;
+
+      let stepsHtml = '';
+      steps.forEach((step, i) => {
+        stepsHtml += `<div style="background:#0f1722;border:1px solid ${step.error ? '#dc2626' : '#1f2937'};border-radius:8px;padding:14px;margin:10px 0;">`;
+        stepsHtml += `<div style="font-weight:600;color:${step.error ? '#ef4444' : 'var(--accent)'};margin-bottom:8px;">${i}. ${step.step}</div>`;
+        stepsHtml += `<pre style="margin:0;background:#0a1119;padding:10px;border-radius:6px;max-height:150px;overflow-y:auto;">${step.result}</pre>`;
+        stepsHtml += `</div>`;
+      });
+
+      document.getElementById('steps').innerHTML = stepsHtml;
+    }
+
+    async function applyOperation(text, op) {
+      switch (op) {
+        case 'base64-encode':
+          return btoa(unescape(encodeURIComponent(text)));
+        case 'base64-decode':
+          return decodeURIComponent(escape(atob(text)));
+        case 'url-encode':
+          return encodeURIComponent(text);
+        case 'url-decode':
+          return decodeURIComponent(text);
+        case 'html-encode':
+          return text.replace(/[&<>"']/g, m => ({ '&': '&amp;', '<': '&lt;', '>': '&gt;', '"': '&quot;', "'": '&#39;' }[m]));
+        case 'html-decode':
+          const el = document.createElement('textarea');
+          el.innerHTML = text;
+          return el.value;
+        case 'hex-encode':
+          return text.split('').map(c => c.charCodeAt(0).toString(16).padStart(2, '0')).join('');
+        case 'hex-decode':
+          return text.match(/.{1,2}/g).map(byte => String.fromCharCode(parseInt(byte, 16))).join('');
+        case 'unicode-encode':
+          return text.split('').map(c => '\\u' + c.charCodeAt(0).toString(16).padStart(4, '0')).join('');
+        case 'unicode-decode':
+          return text.replace(/\\u[\dA-F]{4}/gi, match => String.fromCharCode(parseInt(match.replace(/\\u/g, ''), 16)));
+        case 'md5':
+          return await hashString(text, 'MD5');
+        case 'sha1':
+          return await hashString(text, 'SHA-1');
+        case 'sha256':
+          return await hashString(text, 'SHA-256');
+        case 'uppercase':
+          return text.toUpperCase();
+        case 'lowercase':
+          return text.toLowerCase();
+        case 'reverse':
+          return text.split('').reverse().join('');
+        case 'rot13':
+          return text.replace(/[a-zA-Z]/g, c => String.fromCharCode((c <= 'Z' ? 90 : 122) >= (c = c.charCodeAt(0) + 13) ? c : c - 26));
+        default:
+          throw new Error('Unknown operation');
+      }
+    }
+
+    async function hashString(str, algorithm) {
+      const msgBuffer = new TextEncoder().encode(str);
+      const hashBuffer = await crypto.subtle.digest(algorithm, msgBuffer);
+      const hashArray = Array.from(new Uint8Array(hashBuffer));
+      return hashArray.map(b => b.toString(16).padStart(2, '0')).join('');
+    }
+
+    function copyOutput() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    function swapInputOutput() {
+      const output = document.getElementById('output').textContent;
+      document.getElementById('input').value = output;
+    }
+
+    renderChain();
+  </script>
+</body>
+</html>
diff --git a/tools/cors-header-validator/README.md b/tools/cors-header-validator/README.md
new file mode 100644
index 0000000..64d0589
--- /dev/null
+++ b/tools/cors-header-validator/README.md
@@ -0,0 +1,19 @@
+# CORS Header Validator
+
+Interactive tool for testing and debugging Cross-Origin Resource Sharing (CORS) configurations.
+
+## Features
+
+- Request configuration (origin, method, headers, credentials)
+- Response header validation
+- Common scenario examples
+- Real-time validation feedback
+- Security best practices
+
+## Usage
+
+1. Configure the request (origin, method, custom headers)
+2. Paste response headers from your API
+3. Click "Validate CORS Configuration"
+4. Review issues, warnings, and passed checks
+5. Consult common scenarios for solutions
diff --git a/tools/cors-header-validator/docs/dev-guide.md b/tools/cors-header-validator/docs/dev-guide.md
new file mode 100644
index 0000000..fbcea9f
--- /dev/null
+++ b/tools/cors-header-validator/docs/dev-guide.md
@@ -0,0 +1,52 @@
+# CORS Header Validator - Developer Guide
+
+## Features
+
+1. **Request Configuration**: Simulates client-side CORS request
+2. **Response Validation**: Checks server CORS headers against request
+3. **Scenario Library**: Common CORS patterns and solutions
+4. **Real-time Feedback**: Instant validation with detailed messages
+5. **Security Checks**: Validates credentials + wildcard combinations
+
+## Validation Logic
+
+### Origin Check
+- Compares request origin with Allow-Origin header
+- Flags wildcard (*) with credentials
+- Handles specific origin matching
+
+### Method Check
+- Validates Allow-Methods for non-simple requests
+- Simple methods (GET, HEAD, POST) don't require preflight
+
+### Headers Check
+- Validates custom headers against Allow-Headers
+- Excludes CORS-safe headers from validation
+- Case-insensitive matching
+
+### Credentials Check
+- Ensures Allow-Credentials: true when needed
+- Prevents wildcard origin with credentials
+
+### Additional Checks
+- Max-Age recommendations for preflight caching
+- Expose-Headers for custom response headers
+
+## Extending
+
+Add new scenarios to `commonScenarios` array:
+
+```javascript
+{
+  title: "Scenario Name",
+  solution: "Solution description",
+  example: "Header: value"
+}
+```
+
+## Technical Notes
+
+- Pure client-side validation (no network requests)
+- Parses header text format
+- Case-insensitive header name matching
+- Supports all standard CORS headers
diff --git a/tools/cors-header-validator/docs/screenshot.png b/tools/cors-header-validator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/cors-header-validator/docs/screenshot.png differ
diff --git a/tools/cors-header-validator/docs/user-guide.md b/tools/cors-header-validator/docs/user-guide.md
new file mode 100644
index 0000000..f584344
--- /dev/null
+++ b/tools/cors-header-validator/docs/user-guide.md
@@ -0,0 +1,40 @@
+# CORS Header Validator - User Guide
+
+## Quick Start
+
+1. Enter your requesting origin (e.g., https://example.com)
+2. Select the HTTP method you're using
+3. Add any custom headers (comma-separated)
+4. Specify if you're sending credentials (cookies, auth)
+5. Paste your server's response headers
+6. Click "Validate"
+
+## Understanding Results
+
+**Critical Issues** - Must be fixed for CORS to work
+**Warnings** - Potential problems or best practice violations
+**Passed Checks** - Correctly configured CORS headers
+
+## Common Scenarios
+
+### Simple Requests
+GET, HEAD, or POST with standard headers only need:
+- Access-Control-Allow-Origin
+
+### Preflight Requests
+PUT, DELETE, or custom headers need:
+- Access-Control-Allow-Methods
+- Access-Control-Allow-Headers
+- Response to OPTIONS request
+
+### Credentials
+Cookies or Authorization headers require:
+- Access-Control-Allow-Credentials: true
+- Specific origin (not wildcard *)
+
+## Best Practices
+
+- Use specific origins instead of wildcards when possible
+- Set Max-Age to cache preflight responses (86400 = 24 hours)
+- Only expose necessary response headers
+- Validate origin against whitelist on server
diff --git a/tools/cors-header-validator/index.html b/tools/cors-header-validator/index.html
new file mode 100644
index 0000000..32b7d38
--- /dev/null
+++ b/tools/cors-header-validator/index.html
@@ -0,0 +1,298 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>CORS Header Validator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a0e1a; --panel:#0f1729; --text:#e5e7eb; --muted:#94a3b8; --accent:#8b5cf6; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,'Segoe UI',system-ui,sans-serif; background:radial-gradient(circle at 20% 15%,#1e1b4b,#0a0e1a 60%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; display:flex; justify-content:space-between; align-items:center; gap:16px; flex-wrap:wrap; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); font-size:15px; }
+    .badge { padding:8px 14px; border:1px solid #1f2937; border-radius:10px; font-size:13px; font-weight:600; background:rgba(139,92,246,0.1); }
+    main { padding:24px 32px 48px; display:grid; grid-template-columns:repeat(auto-fit,minmax(400px,1fr)); gap:20px; max-width:1800px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, textarea, select { width:100%; padding:12px 14px; border-radius:10px; border:1px solid #1f2937; background:#0a0e1a; color:var(--text); font-size:14px; font-family:inherit; transition:border-color 0.2s; }
+    input:focus, textarea:focus, select:focus { outline:none; border-color:var(--accent); }
+    textarea { resize:vertical; min-height:180px; font-family:'Fira Code',monospace; font-size:13px; }
+    button { margin-top:14px; width:100%; padding:13px 18px; border:none; border-radius:10px; background:linear-gradient(135deg,#8b5cf6,#7c3aed); color:#fff; font-weight:700; font-size:15px; cursor:pointer; transition:transform 0.2s,box-shadow 0.2s; box-shadow:0 8px 24px rgba(139,92,246,0.3); }
+    button:hover { transform:translateY(-1px); box-shadow:0 12px 32px rgba(139,92,246,0.4); }
+    button:active { transform:translateY(0); }
+    button.secondary { background:linear-gradient(135deg,#06b6d4,#0891b2); box-shadow:0 8px 24px rgba(6,182,212,0.3); }
+    .result { background:#0a0e1a; border:1px solid #1f2937; border-radius:10px; padding:16px; margin:12px 0; min-height:60px; }
+    .status { display:inline-flex; align-items:center; gap:8px; padding:8px 14px; border-radius:8px; font-weight:600; font-size:14px; margin-bottom:12px; }
+    .status.pass { background:rgba(34,197,94,0.15); color:#22c55e; border:1px solid rgba(34,197,94,0.3); }
+    .status.fail { background:rgba(239,68,68,0.15); color:#ef4444; border:1px solid rgba(239,68,68,0.3); }
+    .status.warn { background:rgba(251,146,60,0.15); color:#fb923c; border:1px solid rgba(251,146,60,0.3); }
+    .check-item { padding:10px 0; border-bottom:1px solid #1f2937; display:flex; align-items:start; gap:10px; }
+    .check-item:last-child { border-bottom:none; }
+    .check-icon { font-size:18px; margin-top:2px; }
+    .scenario { background:#0a0e1a; border:1px solid #1f2937; border-radius:8px; padding:14px; margin:10px 0; }
+    .scenario-title { font-weight:600; margin-bottom:8px; color:var(--accent); }
+    .code { background:#050810; border:1px solid #1f2937; border-radius:6px; padding:8px 10px; font-family:'Fira Code',monospace; font-size:12px; margin:6px 0; overflow-x:auto; }
+  </style>
+</head>
+<body>
+  <header>
+    <div>
+      <h1>🌐 CORS Header Validator</h1>
+      <p class="subtitle">Test and debug Cross-Origin Resource Sharing configurations with scenario analysis</p>
+    </div>
+    <div class="badge">Offline • Security Tool</div>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Request Configuration</h2>
+
+      <label for="origin">Origin (requesting domain)</label>
+      <input id="origin" type="text" value="https://example.com" placeholder="e.g., https://example.com" />
+
+      <label for="method">Request Method</label>
+      <select id="method">
+        <option value="GET">GET</option>
+        <option value="POST">POST</option>
+        <option value="PUT">PUT</option>
+        <option value="DELETE">DELETE</option>
+        <option value="PATCH">PATCH</option>
+        <option value="OPTIONS">OPTIONS</option>
+      </select>
+
+      <label for="headers">Custom Headers (comma-separated)</label>
+      <input id="headers" type="text" placeholder="e.g., X-Custom-Header, Authorization" />
+
+      <label for="credentials">Include Credentials</label>
+      <select id="credentials">
+        <option value="false">No (default)</option>
+        <option value="true">Yes (cookies/auth)</option>
+      </select>
+    </section>
+
+    <section class="card">
+      <h2>Response Headers</h2>
+
+      <label for="responseHeaders">CORS Response Headers</label>
+      <textarea id="responseHeaders" spellcheck="false" placeholder="Paste response headers here">Access-Control-Allow-Origin: https://example.com
+Access-Control-Allow-Methods: GET, POST, PUT, DELETE
+Access-Control-Allow-Headers: Content-Type, Authorization
+Access-Control-Max-Age: 86400
+Access-Control-Allow-Credentials: true</textarea>
+
+      <button onclick="validate()">Validate CORS Configuration</button>
+      <button class="secondary" onclick="loadExample()">Load Example</button>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Validation Results</h2>
+      <div id="results">
+        <p style="color:var(--muted);">Configure request and response headers, then click "Validate CORS Configuration"</p>
+      </div>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Common Scenarios & Solutions</h2>
+      <div id="scenarios"></div>
+    </section>
+  </main>
+
+  <script>
+    const commonScenarios = [
+      {
+        title: "Simple Requests (GET, HEAD, POST with simple headers)",
+        solution: "Only Access-Control-Allow-Origin required",
+        example: "Access-Control-Allow-Origin: https://example.com"
+      },
+      {
+        title: "Preflight Requests (Custom headers, methods like PUT/DELETE)",
+        solution: "Must respond to OPTIONS with Allow-Methods and Allow-Headers",
+        example: "Access-Control-Allow-Methods: GET, POST, PUT, DELETE\nAccess-Control-Allow-Headers: Content-Type, Authorization"
+      },
+      {
+        title: "Credentials (cookies, authorization headers)",
+        solution: "Set Allow-Credentials: true AND specific origin (not *)",
+        example: "Access-Control-Allow-Origin: https://example.com\nAccess-Control-Allow-Credentials: true"
+      },
+      {
+        title: "Custom Response Headers",
+        solution: "Use Access-Control-Expose-Headers to expose custom headers",
+        example: "Access-Control-Expose-Headers: X-Custom-Header, X-Request-ID"
+      },
+      {
+        title: "Caching Preflight",
+        solution: "Set Max-Age to cache preflight responses (in seconds)",
+        example: "Access-Control-Max-Age: 86400"
+      }
+    ];
+
+    function parseHeaders(text) {
+      const headers = {};
+      text.split('\n').forEach(line => {
+        const idx = line.indexOf(':');
+        if (idx > 0) {
+          const key = line.slice(0, idx).trim().toLowerCase();
+          const value = line.slice(idx + 1).trim();
+          headers[key] = value;
+        }
+      });
+      return headers;
+    }
+
+    function validate() {
+      const origin = document.getElementById('origin').value.trim();
+      const method = document.getElementById('method').value;
+      const customHeaders = document.getElementById('headers').value.trim();
+      const withCredentials = document.getElementById('credentials').value === 'true';
+      const responseText = document.getElementById('responseHeaders').value;
+      const headers = parseHeaders(responseText);
+
+      const issues = [];
+      const warnings = [];
+      const passed = [];
+
+      // Check Access-Control-Allow-Origin
+      const allowOrigin = headers['access-control-allow-origin'];
+      if (!allowOrigin) {
+        issues.push("Missing Access-Control-Allow-Origin header");
+      } else if (withCredentials && allowOrigin === '*') {
+        issues.push("Cannot use wildcard (*) origin with credentials");
+      } else if (allowOrigin !== '*' && allowOrigin !== origin) {
+        issues.push(`Origin mismatch: Expected ${origin}, got ${allowOrigin}`);
+      } else {
+        passed.push(`Origin check passed: ${allowOrigin}`);
+      }
+
+      // Check credentials
+      const allowCredentials = headers['access-control-allow-credentials'];
+      if (withCredentials) {
+        if (allowCredentials !== 'true') {
+          issues.push("Access-Control-Allow-Credentials must be 'true' for credential requests");
+        } else {
+          passed.push("Credentials allowed correctly");
+        }
+      } else if (allowCredentials === 'true' && allowOrigin === '*') {
+        warnings.push("Allow-Credentials: true with wildcard origin will be rejected");
+      }
+
+      // Check methods for non-simple requests
+      const simpleMethods = ['GET', 'HEAD', 'POST'];
+      if (!simpleMethods.includes(method)) {
+        const allowMethods = headers['access-control-allow-methods'];
+        if (!allowMethods) {
+          issues.push(`Missing Access-Control-Allow-Methods for ${method} request`);
+        } else if (!allowMethods.toUpperCase().includes(method)) {
+          issues.push(`Method ${method} not allowed in: ${allowMethods}`);
+        } else {
+          passed.push(`Method ${method} is allowed`);
+        }
+      }
+
+      // Check custom headers
+      if (customHeaders) {
+        const allowHeaders = headers['access-control-allow-headers'];
+        if (!allowHeaders) {
+          issues.push("Custom headers present but Access-Control-Allow-Headers missing");
+        } else {
+          const requestedHeaders = customHeaders.toLowerCase().split(',').map(h => h.trim());
+          const allowedHeaders = allowHeaders.toLowerCase().split(',').map(h => h.trim());
+          requestedHeaders.forEach(h => {
+            if (!allowedHeaders.includes(h) && !['accept', 'accept-language', 'content-language', 'content-type'].includes(h)) {
+              issues.push(`Custom header "${h}" not in Allow-Headers`);
+            }
+          });
+          if (issues.length === 0) {
+            passed.push("Custom headers are allowed");
+          }
+        }
+      }
+
+      // Check max-age
+      const maxAge = headers['access-control-max-age'];
+      if (maxAge) {
+        const age = parseInt(maxAge);
+        if (age > 0) {
+          passed.push(`Preflight cached for ${age} seconds (${(age / 3600).toFixed(1)} hours)`);
+        }
+      } else if (!simpleMethods.includes(method) || customHeaders) {
+        warnings.push("Consider adding Access-Control-Max-Age to cache preflight requests");
+      }
+
+      // Check expose headers
+      const exposeHeaders = headers['access-control-expose-headers'];
+      if (exposeHeaders) {
+        passed.push(`Exposed headers: ${exposeHeaders}`);
+      }
+
+      renderResults(issues, warnings, passed);
+      renderScenarios();
+    }
+
+    function renderResults(issues, warnings, passed) {
+      let html = '';
+
+      if (issues.length === 0) {
+        html += '<div class="status pass">✅ CORS configuration is valid</div>';
+      } else {
+        html += '<div class="status fail">❌ CORS configuration has issues</div>';
+      }
+
+      if (issues.length > 0) {
+        html += '<div class="result"><h3 style="margin:0 0 12px;color:#ef4444;">Critical Issues</h3>';
+        issues.forEach(issue => {
+          html += `<div class="check-item"><span class="check-icon">❌</span><div>${issue}</div></div>`;
+        });
+        html += '</div>';
+      }
+
+      if (warnings.length > 0) {
+        html += '<div class="result"><h3 style="margin:0 0 12px;color:#fb923c;">Warnings</h3>';
+        warnings.forEach(warn => {
+          html += `<div class="check-item"><span class="check-icon">⚠️</span><div>${warn}</div></div>`;
+        });
+        html += '</div>';
+      }
+
+      if (passed.length > 0) {
+        html += '<div class="result"><h3 style="margin:0 0 12px;color:#22c55e;">Passed Checks</h3>';
+        passed.forEach(pass => {
+          html += `<div class="check-item"><span class="check-icon">✅</span><div>${pass}</div></div>`;
+        });
+        html += '</div>';
+      }
+
+      document.getElementById('results').innerHTML = html;
+    }
+
+    function renderScenarios() {
+      let html = '';
+      commonScenarios.forEach(scenario => {
+        html += `<div class="scenario">
+          <div class="scenario-title">${scenario.title}</div>
+          <div style="color:var(--muted);margin-bottom:8px;">${scenario.solution}</div>
+          <div class="code">${scenario.example}</div>
+        </div>`;
+      });
+      document.getElementById('scenarios').innerHTML = html;
+    }
+
+    function loadExample() {
+      document.getElementById('origin').value = 'https://app.example.com';
+      document.getElementById('method').value = 'POST';
+      document.getElementById('headers').value = 'Content-Type, Authorization, X-Custom-Header';
+      document.getElementById('credentials').value = 'true';
+      document.getElementById('responseHeaders').value = `Access-Control-Allow-Origin: https://app.example.com
+Access-Control-Allow-Methods: GET, POST, PUT, DELETE, PATCH
+Access-Control-Allow-Headers: Content-Type, Authorization, X-Custom-Header
+Access-Control-Allow-Credentials: true
+Access-Control-Max-Age: 86400
+Access-Control-Expose-Headers: X-Request-ID, X-RateLimit-Remaining`;
+      validate();
+    }
+
+    renderScenarios();
+  </script>
+</body>
+</html>
diff --git a/tools/dns-query-debugger-ssl-validator/docs/README.md b/tools/dns-query-debugger-ssl-validator/docs/README.md
new file mode 100644
index 0000000..6ad3358
--- /dev/null
+++ b/tools/dns-query-debugger-ssl-validator/docs/README.md
@@ -0,0 +1,34 @@
+# DNS Query Debugger + SSL Validator
+
+Debug DNS records and validate SSL/TLS certificates with detailed analysis.
+
+## Features
+
+- Query DNS records (A, AAAA, CNAME, MX, TXT, NS, SOA, CAA)
+- Simulated SSL/TLS certificate validation
+- Record type filtering
+- Detailed DNS response information
+- SSL certificate expiration checking
+- Visual status indicators
+
+## Usage
+
+### DNS Query
+1. Enter domain name
+2. Select record type
+3. Click Query DNS
+4. Review results
+
+### SSL Validation
+1. Enter hostname
+2. Specify port (default: 443)
+3. Click Validate SSL Certificate
+4. Review certificate details
+
+Note: SSL validation is simulated in browser. For production use, employ command-line tools.
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/dns-query-debugger-ssl-validator/docs/screenshot.png b/tools/dns-query-debugger-ssl-validator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/dns-query-debugger-ssl-validator/docs/screenshot.png differ
diff --git a/tools/dns-query-debugger-ssl-validator/index.html b/tools/dns-query-debugger-ssl-validator/index.html
new file mode 100644
index 0000000..3c8462a
--- /dev/null
+++ b/tools/dns-query-debugger-ssl-validator/index.html
@@ -0,0 +1,294 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>DNS Query Debugger + SSL Validator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a1628; --panel:#0f1f38; --text:#e5e7eb; --muted:#94a3b8; --accent:#0ea5e9; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 25% 20%,#1e3a5f,#0a1628 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; display:grid; grid-template-columns:repeat(auto-fit,minmax(450px,1fr)); gap:20px; max-width:1800px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, select { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0a1628; color:var(--text); font-size:14px; font-family:inherit; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#0ea5e9,#0284c7); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(14,165,233,0.3); }
+    button:hover { transform:translateY(-1px); }
+    .result { background:#0a1628; border:1px solid #1f2937; border-radius:10px; padding:16px; margin:12px 0; }
+    .result-item { padding:8px 0; border-bottom:1px solid #1f2937; display:flex; justify-content:space-between; gap:10px; }
+    .result-item:last-child { border-bottom:none; }
+    .label { color:var(--muted); font-weight:600; }
+    .value { font-family:'Fira Code',monospace; font-size:13px; word-break:break-all; }
+    .status { display:inline-flex; padding:6px 12px; border-radius:8px; font-size:13px; font-weight:600; }
+    .status.valid { background:rgba(34,197,94,0.15); color:#22c55e; }
+    .status.invalid { background:rgba(239,68,68,0.15); color:#ef4444; }
+    .status.warning { background:rgba(251,146,60,0.15); color:#fb923c; }
+    .tabs { display:flex; gap:8px; margin-bottom:16px; border-bottom:1px solid #1f2937; }
+    .tab { padding:10px 16px; cursor:pointer; border-bottom:2px solid transparent; font-weight:600; color:var(--muted); }
+    .tab.active { color:var(--accent); border-bottom-color:var(--accent); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🌐 DNS Query Debugger + SSL Validator</h1>
+    <p class="subtitle">Debug DNS records and validate SSL/TLS certificates with detailed analysis</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <div class="tabs">
+        <div class="tab active" onclick="switchTab('dns')">DNS Query</div>
+        <div class="tab" onclick="switchTab('ssl')">SSL Validator</div>
+      </div>
+
+      <div id="dnsPanel">
+        <label for="domain">Domain</label>
+        <input id="domain" type="text" placeholder="example.com" />
+
+        <label for="recordType">Record Type</label>
+        <select id="recordType">
+          <option value="A">A (IPv4)</option>
+          <option value="AAAA">AAAA (IPv6)</option>
+          <option value="CNAME">CNAME (Canonical Name)</option>
+          <option value="MX">MX (Mail Exchange)</option>
+          <option value="TXT">TXT (Text)</option>
+          <option value="NS">NS (Name Server)</option>
+          <option value="SOA">SOA (Start of Authority)</option>
+          <option value="CAA">CAA (Certificate Authority)</option>
+        </select>
+
+        <button onclick="queryDNS()">Query DNS</button>
+      </div>
+
+      <div id="sslPanel" style="display:none;">
+        <label for="hostname">Hostname</label>
+        <input id="hostname" type="text" placeholder="example.com" />
+
+        <label for="port">Port</label>
+        <input id="port" type="number" value="443" />
+
+        <p style="color:var(--muted);font-size:13px;margin-top:8px;">
+          ⚠️ Note: Due to browser security, this is a simulation. For real SSL validation, use command-line tools like <code>openssl s_client</code> or online validators.
+        </p>
+
+        <button onclick="validateSSL()">Validate SSL Certificate</button>
+      </div>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Results</h2>
+      <div id="results">
+        <p style="color:var(--muted);">Enter a domain and click Query DNS or Validate SSL to see results</p>
+      </div>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Common DNS Record Types</h2>
+      <div class="result">
+        <div class="result-item">
+          <span class="label">A</span>
+          <span class="value">Maps domain to IPv4 address</span>
+        </div>
+        <div class="result-item">
+          <span class="label">AAAA</span>
+          <span class="value">Maps domain to IPv6 address</span>
+        </div>
+        <div class="result-item">
+          <span class="label">CNAME</span>
+          <span class="value">Alias to another domain (canonical name)</span>
+        </div>
+        <div class="result-item">
+          <span class="label">MX</span>
+          <span class="value">Mail exchange servers with priority</span>
+        </div>
+        <div class="result-item">
+          <span class="label">TXT</span>
+          <span class="value">Text records for verification, SPF, DKIM, etc.</span>
+        </div>
+        <div class="result-item">
+          <span class="label">NS</span>
+          <span class="value">Name servers for the domain</span>
+        </div>
+        <div class="result-item">
+          <span class="label">SOA</span>
+          <span class="value">Start of Authority with zone information</span>
+        </div>
+        <div class="result-item">
+          <span class="label">CAA</span>
+          <span class="value">Certificate Authority Authorization</span>
+        </div>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    let currentTab = 'dns';
+
+    // Sample DNS data for demonstration
+    const sampleDNS = {
+      'example.com': {
+        A: ['93.184.216.34'],
+        AAAA: ['2606:2800:220:1:248:1893:25c8:1946'],
+        MX: ['0 .', '10 mail.example.com'],
+        NS: ['a.iana-servers.net', 'b.iana-servers.net'],
+        TXT: ['v=spf1 -all', 'example-verification=12345'],
+        SOA: ['a.iana-servers.net hostmaster.example.com 2023010100 7200 3600 1209600 3600']
+      },
+      'github.com': {
+        A: ['140.82.121.4'],
+        MX: ['1 aspmx.l.google.com', '5 alt1.aspmx.l.google.com'],
+        NS: ['dns1.p08.nsone.net', 'dns2.p08.nsone.net'],
+        TXT: ['v=spf1 include:_spf.google.com ~all']
+      }
+    };
+
+    function switchTab(tab) {
+      currentTab = tab;
+      document.querySelectorAll('.tab').forEach(t => t.classList.remove('active'));
+      event.target.classList.add('active');
+
+      document.getElementById('dnsPanel').style.display = tab === 'dns' ? 'block' : 'none';
+      document.getElementById('sslPanel').style.display = tab === 'ssl' ? 'block' : 'none';
+    }
+
+    function queryDNS() {
+      const domain = document.getElementById('domain').value.trim().toLowerCase();
+      const recordType = document.getElementById('recordType').value;
+
+      if (!domain) {
+        alert('Please enter a domain');
+        return;
+      }
+
+      // Simulate DNS query
+      let html = `<h3 style="margin:0 0 16px;">DNS Query: ${domain} (${recordType})</h3>`;
+
+      const records = sampleDNS[domain];
+      if (records && records[recordType]) {
+        html += `<div class="status valid">✓ Records Found</div>`;
+        html += `<div class="result">`;
+        records[recordType].forEach(record => {
+          html += `<div class="result-item">
+            <span class="label">${recordType}</span>
+            <span class="value">${record}</span>
+          </div>`;
+        });
+        html += `</div>`;
+      } else {
+        html += `<div class="status warning">⚠ Using sample data</div>`;
+        html += `<div class="result">`;
+        html += `<p style="color:var(--muted);">This is a client-side tool using sample data. For real DNS queries, use:</p>`;
+        html += `<div style="margin-top:12px;background:#0a1628;border:1px solid #1f2937;border-radius:8px;padding:12px;">`;
+        html += `<div style="font-family:'Fira Code',monospace;font-size:13px;">`;
+        html += `# Using dig (Linux/Mac)<br>`;
+        html += `dig ${domain} ${recordType}<br><br>`;
+        html += `# Using nslookup (Windows)<br>`;
+        html += `nslookup -type=${recordType} ${domain}<br><br>`;
+        html += `# Using host (Linux/Mac)<br>`;
+        html += `host -t ${recordType} ${domain}`;
+        html += `</div></div>`;
+        html += `</div>`;
+      }
+
+      // Add DNS propagation check info
+      html += `<div class="result" style="margin-top:16px;">`;
+      html += `<h4 style="margin:0 0 12px;">DNS Propagation Check</h4>`;
+      html += `<p style="color:var(--muted);font-size:14px;">DNS changes can take 24-48 hours to propagate globally. Check propagation at:</p>`;
+      html += `<ul style="color:var(--muted);font-size:14px;"><li>dnschecker.org</li><li>whatsmydns.net</li></ul>`;
+      html += `</div>`;
+
+      document.getElementById('results').innerHTML = html;
+    }
+
+    function validateSSL() {
+      const hostname = document.getElementById('hostname').value.trim();
+      const port = document.getElementById('port').value || '443';
+
+      if (!hostname) {
+        alert('Please enter a hostname');
+        return;
+      }
+
+      // Simulate SSL validation
+      let html = `<h3 style="margin:0 0 16px;">SSL Certificate Check: ${hostname}:${port}</h3>`;
+
+      html += `<div class="status valid">✓ Simulation Mode</div>`;
+
+      html += `<div class="result">`;
+      html += `<h4 style="margin:0 0 12px;">Certificate Information</h4>`;
+      html += `<div class="result-item">
+        <span class="label">Subject</span>
+        <span class="value">CN=${hostname}</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Issuer</span>
+        <span class="value">Let's Encrypt Authority X3</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Valid From</span>
+        <span class="value">${new Date(Date.now() - 30 * 24 * 60 * 60 * 1000).toISOString().split('T')[0]}</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Valid Until</span>
+        <span class="value">${new Date(Date.now() + 60 * 24 * 60 * 60 * 1000).toISOString().split('T')[0]}</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Protocol</span>
+        <span class="value">TLS 1.3</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Cipher Suite</span>
+        <span class="value">TLS_AES_256_GCM_SHA384</span>
+      </div>`;
+      html += `</div>`;
+
+      html += `<div class="result" style="margin-top:16px;">`;
+      html += `<h4 style="margin:0 0 12px;">For Real SSL Validation</h4>`;
+      html += `<p style="color:var(--muted);font-size:14px;">Use these command-line tools:</p>`;
+      html += `<div style="background:#0a1628;border:1px solid #1f2937;border-radius:8px;padding:12px;font-family:'Fira Code',monospace;font-size:13px;margin-top:8px;">`;
+      html += `# OpenSSL<br>`;
+      html += `openssl s_client -connect ${hostname}:${port} -servername ${hostname}<br><br>`;
+      html += `# Check expiry<br>`;
+      html += `echo | openssl s_client -connect ${hostname}:${port} 2>/dev/null | openssl x509 -noout -dates<br><br>`;
+      html += `# Full certificate details<br>`;
+      html += `echo | openssl s_client -connect ${hostname}:${port} 2>/dev/null | openssl x509 -noout -text`;
+      html += `</div>`;
+      html += `<p style="color:var(--muted);font-size:14px;margin-top:12px;">Online tools:</p>`;
+      html += `<ul style="color:var(--muted);font-size:14px;">`;
+      html += `<li>SSL Labs Server Test (ssllabs.com/ssltest)</li>`;
+      html += `<li>SSL Checker (sslshopper.com/ssl-checker.html)</li>`;
+      html += `</ul>`;
+      html += `</div>`;
+
+      html += `<div class="result" style="margin-top:16px;">`;
+      html += `<h4 style="margin:0 0 12px;">Common SSL Issues</h4>`;
+      html += `<div class="result-item">
+        <span class="label">Expired Certificate</span>
+        <span class="value">Renew before expiry date</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Name Mismatch</span>
+        <span class="value">Certificate CN must match hostname</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Untrusted CA</span>
+        <span class="value">Use certificates from trusted CAs</span>
+      </div>`;
+      html += `<div class="result-item">
+        <span class="label">Weak Ciphers</span>
+        <span class="value">Disable SSLv3, TLS 1.0/1.1</span>
+      </div>`;
+      html += `</div>`;
+
+      document.getElementById('results').innerHTML = html;
+    }
+
+    // Load sample query on startup
+    document.getElementById('domain').value = 'example.com';
+  </script>
+</body>
+</html>
diff --git a/tools/docker-compose-builder/README.md b/tools/docker-compose-builder/README.md
new file mode 100644
index 0000000..4d19102
--- /dev/null
+++ b/tools/docker-compose-builder/README.md
@@ -0,0 +1,27 @@
+# Docker Compose Builder
+
+A visual, interactive tool for building Docker Compose configurations with templates, validation, and best practice recommendations.
+
+## Features
+
+- Visual service configuration builder
+- Pre-built templates (LAMP, MEAN, WordPress, Monitoring)
+- Real-time YAML generation
+- Dependency validation
+- Production readiness checklist
+- Export to file or clipboard
+
+## Usage
+
+1. Choose a template or build from scratch
+2. Add services with images, ports, volumes, and environment variables
+3. Define service dependencies
+4. Review generated docker-compose.yml
+5. Validate configuration
+6. Download or copy to clipboard
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/docker-compose-builder/docs/dev-guide.md b/tools/docker-compose-builder/docs/dev-guide.md
new file mode 100644
index 0000000..e61e698
--- /dev/null
+++ b/tools/docker-compose-builder/docs/dev-guide.md
@@ -0,0 +1,48 @@
+# Docker Compose Builder - Developer Guide
+
+## Architecture
+
+Single-file HTML application with vanilla JavaScript. No external dependencies.
+
+## Key Functions
+
+### Service Management
+- `addService()`: Adds a new service to the configuration
+- `removeService(name)`: Removes a service
+- `render()`: Updates UI and YAML output
+
+### YAML Generation
+- `generateYAML()`: Converts services object to YAML format
+- Handles ports, environment variables, volumes, and dependencies
+- Automatically detects and defines named volumes
+
+### Validation
+- `validateOutput(yaml)`: Checks for common issues
+- Detects missing dependencies
+- Warns about :latest tags
+- Provides production readiness checklist
+
+### Templates
+- Pre-defined service configurations
+- Easy to extend in `templates` object
+- Covers common application stacks
+
+## Extending
+
+Add new templates by extending the `templates` object:
+
+```javascript
+templates.mystack = [
+  {name: 'service1', image: 'image:tag', ports: '8080:80'},
+  {name: 'service2', image: 'image:tag', dependsOn: 'service1'}
+];
+```
+
+## Features Added
+
+1. **Template System**: Four pre-built stack templates
+2. **Visual Service List**: See all added services at a glance
+3. **Dependency Validation**: Checks if dependent services exist
+4. **Production Checklist**: Best practice recommendations
+5. **Multiple Export Options**: Copy, download, or validate
+6. **Named Volume Detection**: Automatically defines Docker volumes
diff --git a/tools/docker-compose-builder/docs/screenshot.png b/tools/docker-compose-builder/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/docker-compose-builder/docs/screenshot.png differ
diff --git a/tools/docker-compose-builder/docs/user-guide.md b/tools/docker-compose-builder/docs/user-guide.md
new file mode 100644
index 0000000..6497d59
--- /dev/null
+++ b/tools/docker-compose-builder/docs/user-guide.md
@@ -0,0 +1,36 @@
+# Docker Compose Builder - User Guide
+
+## Quick Start
+
+1. **Load a Template**: Click one of the template buttons (LAMP Stack, MEAN Stack, etc.) to start with a pre-configured setup
+2. **Add Services**: Fill in the service form and click "Add Service"
+3. **Review Output**: The docker-compose.yml file is generated in real-time
+4. **Validate**: Click "Validate Syntax" to check for issues
+5. **Export**: Use "Copy to Clipboard" or "Download File" to save your configuration
+
+## Adding Services
+
+Each service requires:
+- **Service Name**: Unique identifier (e.g., web, api, database)
+- **Docker Image**: Image name and tag (e.g., nginx:alpine, postgres:15)
+
+Optional fields:
+- **Ports**: Map host to container ports (e.g., 8080:80)
+- **Environment Variables**: One per line as KEY=value
+- **Volumes**: Mount points (e.g., ./data:/var/lib/data)
+- **Depends On**: Service dependencies (comma-separated)
+
+## Templates
+
+- **LAMP Stack**: Apache, PHP, MySQL
+- **MEAN Stack**: MongoDB, Express/Node, Angular/Nginx
+- **WordPress**: WordPress with MySQL database
+- **Monitoring**: Prometheus, Grafana, Node Exporter
+
+## Best Practices
+
+- Use specific image tags (avoid :latest)
+- Define restart policies for production
+- Set resource limits
+- Use named volumes for data persistence
+- Configure health checks
diff --git a/tools/docker-compose-builder/index.html b/tools/docker-compose-builder/index.html
new file mode 100644
index 0000000..4430a24
--- /dev/null
+++ b/tools/docker-compose-builder/index.html
@@ -0,0 +1,325 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Docker Compose Builder</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0b1224; --panel:#111a2f; --text:#e5e7eb; --muted:#94a3b8; --accent:#3b82f6; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,'Segoe UI',system-ui,sans-serif; background:radial-gradient(circle at 15% 20%,#1a2847,#0b1224 65%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; display:flex; justify-content:space-between; align-items:center; gap:16px; flex-wrap:wrap; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); font-size:15px; }
+    .badge { padding:8px 14px; border:1px solid #1f2937; border-radius:10px; font-size:13px; font-weight:600; background:rgba(59,130,246,0.1); }
+    main { padding:24px 32px 48px; display:grid; grid-template-columns:repeat(auto-fit,minmax(380px,1fr)); gap:20px; max-width:1800px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, select, textarea { width:100%; padding:12px 14px; border-radius:10px; border:1px solid #1f2937; background:#0b1224; color:var(--text); font-size:14px; font-family:inherit; transition:border-color 0.2s; }
+    input:focus, select:focus, textarea:focus { outline:none; border-color:var(--accent); }
+    textarea { resize:vertical; min-height:120px; font-family:'Fira Code',monospace; font-size:13px; }
+    button { margin-top:14px; width:100%; padding:13px 18px; border:none; border-radius:10px; background:linear-gradient(135deg,#3b82f6,#2563eb); color:#fff; font-weight:700; font-size:15px; cursor:pointer; transition:transform 0.2s,box-shadow 0.2s; box-shadow:0 8px 24px rgba(59,130,246,0.3); }
+    button:hover { transform:translateY(-1px); box-shadow:0 12px 32px rgba(59,130,246,0.4); }
+    button:active { transform:translateY(0); }
+    button.secondary { background:linear-gradient(135deg,#6366f1,#4f46e5); box-shadow:0 8px 24px rgba(99,102,241,0.3); }
+    pre { background:#0a0f1e; border:1px solid #1f2937; border-radius:10px; padding:16px; white-space:pre-wrap; word-break:break-word; min-height:280px; max-height:500px; overflow-y:auto; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; }
+    .service-list { display:flex; flex-direction:column; gap:10px; margin-top:8px; }
+    .service-item { background:#0a0f1e; border:1px solid #1f2937; border-radius:8px; padding:12px; display:flex; justify-content:space-between; align-items:center; }
+    .service-item button { width:auto; margin:0; padding:6px 12px; font-size:13px; background:#dc2626; box-shadow:none; }
+    .add-section { display:grid; grid-template-columns:1fr auto; gap:10px; align-items:end; }
+    .template-grid { display:grid; grid-template-columns:repeat(auto-fit,minmax(140px,1fr)); gap:8px; margin-top:8px; }
+    .template-btn { padding:10px; border:1px solid #1f2937; border-radius:8px; background:rgba(59,130,246,0.08); cursor:pointer; font-size:13px; text-align:center; transition:all 0.2s; }
+    .template-btn:hover { background:rgba(59,130,246,0.15); border-color:var(--accent); }
+    ::-webkit-scrollbar { width:8px; height:8px; }
+    ::-webkit-scrollbar-track { background:#0a0f1e; }
+    ::-webkit-scrollbar-thumb { background:#1f2937; border-radius:4px; }
+    ::-webkit-scrollbar-thumb:hover { background:#374151; }
+  </style>
+</head>
+<body>
+  <header>
+    <div>
+      <h1>🐳 Docker Compose Builder</h1>
+      <p class="subtitle">Visual composer for multi-container Docker applications with templates and validation</p>
+    </div>
+    <div class="badge">Offline • Production Ready</div>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Service Configuration</h2>
+
+      <label>Load Template</label>
+      <div class="template-grid">
+        <div class="template-btn" onclick="loadTemplate('lamp')">LAMP Stack</div>
+        <div class="template-btn" onclick="loadTemplate('mean')">MEAN Stack</div>
+        <div class="template-btn" onclick="loadTemplate('wordpress')">WordPress</div>
+        <div class="template-btn" onclick="loadTemplate('monitoring')">Monitoring</div>
+      </div>
+
+      <label for="serviceName">Service Name</label>
+      <input id="serviceName" type="text" placeholder="e.g., web, api, database" />
+
+      <label for="serviceImage">Docker Image</label>
+      <input id="serviceImage" type="text" placeholder="e.g., nginx:latest, postgres:15" />
+
+      <label for="servicePorts">Ports (host:container)</label>
+      <input id="servicePorts" type="text" placeholder="e.g., 8080:80, 5432:5432" />
+
+      <label for="serviceEnv">Environment Variables</label>
+      <textarea id="serviceEnv" placeholder="KEY=value&#10;ANOTHER_KEY=another_value"></textarea>
+
+      <label for="serviceVolumes">Volumes</label>
+      <input id="serviceVolumes" type="text" placeholder="e.g., ./data:/var/lib/data" />
+
+      <label for="serviceDependsOn">Depends On (comma-separated)</label>
+      <input id="serviceDependsOn" type="text" placeholder="e.g., database, redis" />
+
+      <button onclick="addService()">Add Service</button>
+
+      <div style="margin-top:20px;">
+        <label>Services Added</label>
+        <div class="service-list" id="serviceList"></div>
+      </div>
+    </section>
+
+    <section class="card">
+      <h2>Generated docker-compose.yml</h2>
+      <pre id="output">version: '3.8'
+
+services:
+  # Add services using the form ←</pre>
+      <button class="secondary" onclick="copyToClipboard()">📋 Copy to Clipboard</button>
+      <button class="secondary" onclick="downloadFile()">💾 Download File</button>
+      <button class="secondary" onclick="validateCompose()">✓ Validate Syntax</button>
+    </section>
+
+    <section class="card">
+      <h2>Validation & Analysis</h2>
+      <pre id="validation">No issues detected yet.
+
+Tips:
+• Use specific image tags (avoid :latest)
+• Define restart policies for production
+• Set resource limits (mem_limit, cpus)
+• Use named volumes for persistence
+• Configure health checks for services</pre>
+    </section>
+  </main>
+
+  <script>
+    let services = {};
+
+    const templates = {
+      lamp: [
+        {name: 'web', image: 'php:8.2-apache', ports: '8080:80', volumes: './html:/var/www/html', dependsOn: 'db'},
+        {name: 'db', image: 'mysql:8.0', env: 'MYSQL_ROOT_PASSWORD=secret\nMYSQL_DATABASE=myapp', volumes: 'db_data:/var/lib/mysql'}
+      ],
+      mean: [
+        {name: 'mongodb', image: 'mongo:7', ports: '27017:27017', volumes: 'mongo_data:/data/db'},
+        {name: 'api', image: 'node:20-alpine', ports: '3000:3000', dependsOn: 'mongodb'},
+        {name: 'web', image: 'nginx:alpine', ports: '8080:80', dependsOn: 'api'}
+      ],
+      wordpress: [
+        {name: 'wordpress', image: 'wordpress:latest', ports: '8080:80', env: 'WORDPRESS_DB_HOST=db\nWORDPRESS_DB_USER=wordpress\nWORDPRESS_DB_PASSWORD=secret\nWORDPRESS_DB_NAME=wordpress', dependsOn: 'db'},
+        {name: 'db', image: 'mysql:8.0', env: 'MYSQL_ROOT_PASSWORD=secret\nMYSQL_DATABASE=wordpress\nMYSQL_USER=wordpress\nMYSQL_PASSWORD=secret', volumes: 'db_data:/var/lib/mysql'}
+      ],
+      monitoring: [
+        {name: 'prometheus', image: 'prom/prometheus:latest', ports: '9090:9090', volumes: './prometheus.yml:/etc/prometheus/prometheus.yml'},
+        {name: 'grafana', image: 'grafana/grafana:latest', ports: '3000:3000', dependsOn: 'prometheus'},
+        {name: 'node-exporter', image: 'prom/node-exporter:latest', ports: '9100:9100'}
+      ]
+    };
+
+    function loadTemplate(templateName) {
+      services = {};
+      const template = templates[templateName];
+      template.forEach(svc => {
+        const name = svc.name;
+        services[name] = {
+          image: svc.image,
+          ports: svc.ports ? [svc.ports] : [],
+          environment: svc.env ? svc.env.split('\n').reduce((acc, line) => {
+            const [k, v] = line.split('=');
+            if (k && v) acc[k.trim()] = v.trim();
+            return acc;
+          }, {}) : {},
+          volumes: svc.volumes ? [svc.volumes] : [],
+          depends_on: svc.dependsOn ? svc.dependsOn.split(',').map(d => d.trim()) : []
+        };
+      });
+      render();
+    }
+
+    function addService() {
+      const name = document.getElementById('serviceName').value.trim();
+      const image = document.getElementById('serviceImage').value.trim();
+      const ports = document.getElementById('servicePorts').value.trim();
+      const envText = document.getElementById('serviceEnv').value.trim();
+      const volumes = document.getElementById('serviceVolumes').value.trim();
+      const dependsOn = document.getElementById('serviceDependsOn').value.trim();
+
+      if (!name || !image) {
+        alert('Service name and image are required');
+        return;
+      }
+
+      const service = { image };
+
+      if (ports) service.ports = ports.split(',').map(p => p.trim());
+
+      if (envText) {
+        service.environment = envText.split('\n').reduce((acc, line) => {
+          const [k, v] = line.split('=');
+          if (k && v) acc[k.trim()] = v.trim();
+          return acc;
+        }, {});
+      }
+
+      if (volumes) service.volumes = volumes.split(',').map(v => v.trim());
+
+      if (dependsOn) service.depends_on = dependsOn.split(',').map(d => d.trim());
+
+      services[name] = service;
+
+      document.getElementById('serviceName').value = '';
+      document.getElementById('serviceImage').value = '';
+      document.getElementById('servicePorts').value = '';
+      document.getElementById('serviceEnv').value = '';
+      document.getElementById('serviceVolumes').value = '';
+      document.getElementById('serviceDependsOn').value = '';
+
+      render();
+    }
+
+    function removeService(name) {
+      delete services[name];
+      render();
+    }
+
+    function render() {
+      const serviceListEl = document.getElementById('serviceList');
+      serviceListEl.innerHTML = Object.keys(services).map(name =>
+        `<div class="service-item">
+          <span><strong>${name}</strong> (${services[name].image})</span>
+          <button onclick="removeService('${name}')">Remove</button>
+        </div>`
+      ).join('') || '<div style="color:var(--muted);padding:12px;">No services added yet</div>';
+
+      const yaml = generateYAML();
+      document.getElementById('output').textContent = yaml;
+      validateOutput(yaml);
+    }
+
+    function generateYAML() {
+      if (Object.keys(services).length === 0) {
+        return "version: '3.8'\n\nservices:\n  # Add services using the form ←";
+      }
+
+      let yaml = "version: '3.8'\n\nservices:\n";
+
+      Object.entries(services).forEach(([name, config]) => {
+        yaml += `  ${name}:\n`;
+        yaml += `    image: ${config.image}\n`;
+
+        if (config.ports && config.ports.length) {
+          yaml += `    ports:\n`;
+          config.ports.forEach(p => yaml += `      - "${p}"\n`);
+        }
+
+        if (config.environment && Object.keys(config.environment).length) {
+          yaml += `    environment:\n`;
+          Object.entries(config.environment).forEach(([k, v]) => {
+            yaml += `      ${k}: ${v}\n`;
+          });
+        }
+
+        if (config.volumes && config.volumes.length) {
+          yaml += `    volumes:\n`;
+          config.volumes.forEach(v => yaml += `      - ${v}\n`);
+        }
+
+        if (config.depends_on && config.depends_on.length) {
+          yaml += `    depends_on:\n`;
+          config.depends_on.forEach(d => yaml += `      - ${d}\n`);
+        }
+
+        yaml += '\n';
+      });
+
+      const volumeNames = Object.values(services)
+        .flatMap(s => s.volumes || [])
+        .filter(v => !v.includes('./') && !v.includes('/'))
+        .map(v => v.split(':')[0]);
+
+      if (volumeNames.length) {
+        yaml += 'volumes:\n';
+        [...new Set(volumeNames)].forEach(v => yaml += `  ${v}:\n`);
+      }
+
+      return yaml;
+    }
+
+    function validateOutput(yaml) {
+      const issues = [];
+      const warnings = [];
+
+      Object.entries(services).forEach(([name, config]) => {
+        if (config.image.endsWith(':latest')) {
+          warnings.push(`⚠️ Service "${name}" uses :latest tag (not recommended for production)`);
+        }
+
+        if (!config.ports || config.ports.length === 0) {
+          warnings.push(`ℹ️ Service "${name}" has no exposed ports`);
+        }
+
+        if (config.depends_on) {
+          config.depends_on.forEach(dep => {
+            if (!services[dep]) {
+              issues.push(`❌ Service "${name}" depends on "${dep}" which doesn't exist`);
+            }
+          });
+        }
+      });
+
+      let output = issues.length === 0 ? '✅ No critical issues detected\n\n' : issues.join('\n') + '\n\n';
+      output += warnings.length ? warnings.join('\n') + '\n\n' : '';
+      output += 'Production Checklist:\n';
+      output += '• Add restart policies (restart: unless-stopped)\n';
+      output += '• Set resource limits (mem_limit, cpus)\n';
+      output += '• Configure health checks\n';
+      output += '• Use secrets for sensitive data\n';
+      output += '• Define networks for isolation';
+
+      document.getElementById('validation').textContent = output;
+    }
+
+    function copyToClipboard() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => {
+        alert('Copied to clipboard!');
+      });
+    }
+
+    function downloadFile() {
+      const text = document.getElementById('output').textContent;
+      const blob = new Blob([text], { type: 'text/yaml' });
+      const url = URL.createObjectURL(blob);
+      const a = document.createElement('a');
+      a.href = url;
+      a.download = 'docker-compose.yml';
+      a.click();
+      URL.revokeObjectURL(url);
+    }
+
+    function validateCompose() {
+      const yaml = document.getElementById('output').textContent;
+      validateOutput(yaml);
+      alert('Validation complete! Check the Validation & Analysis panel for details.');
+    }
+
+    render();
+  </script>
+</body>
+</html>
diff --git a/tools/docker-env-variable-manager/docs/README.md b/tools/docker-env-variable-manager/docs/README.md
new file mode 100644
index 0000000..53f7db5
--- /dev/null
+++ b/tools/docker-env-variable-manager/docs/README.md
@@ -0,0 +1,31 @@
+# Docker Environment Variable Manager
+
+Manage, validate, and convert environment variables for Docker containers and compose files.
+
+## Features
+
+- Add variables individually or import in bulk
+- Export to multiple formats:
+  - ENV file (.env)
+  - Dockerfile format
+  - Docker Compose format
+  - Shell export commands
+  - JSON format
+- Variable validation
+- Description support for documentation
+- Copy or download output
+- Manage multiple variables
+
+## Usage
+
+1. Add variables with name, value, and optional description
+2. Or import from text in KEY=value format
+3. Switch between output formats using tabs
+4. Validate variable names and values
+5. Copy to clipboard or download
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/docker-env-variable-manager/docs/screenshot.png b/tools/docker-env-variable-manager/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/docker-env-variable-manager/docs/screenshot.png differ
diff --git a/tools/docker-env-variable-manager/index.html b/tools/docker-env-variable-manager/index.html
new file mode 100644
index 0000000..c862ffa
--- /dev/null
+++ b/tools/docker-env-variable-manager/index.html
@@ -0,0 +1,287 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Docker Environment Variable Manager</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0b1224; --panel:#111a2f; --text:#e5e7eb; --muted:#94a3b8; --accent:#10b981; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 10% 20%,#1a3a2e,#0b1224 60%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; display:grid; grid-template-columns:repeat(auto-fit,minmax(400px,1fr)); gap:20px; max-width:1800px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, textarea, select { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0b1224; color:var(--text); font-size:14px; font-family:inherit; }
+    textarea { min-height:180px; font-family:'Fira Code',monospace; font-size:13px; resize:vertical; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#10b981,#059669); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(16,185,129,0.3); }
+    button:hover { transform:translateY(-1px); box-shadow:0 12px 32px rgba(16,185,129,0.4); }
+    button.secondary { background:linear-gradient(135deg,#6366f1,#4f46e5); box-shadow:0 8px 24px rgba(99,102,241,0.3); }
+    pre { background:#0a0f1e; border:1px solid #1f2937; border-radius:10px; padding:16px; min-height:200px; max-height:500px; overflow-y:auto; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; white-space:pre-wrap; }
+    .env-item { background:#0a0f1e; border:1px solid #1f2937; border-radius:8px; padding:12px; margin:8px 0; display:flex; justify-content:space-between; align-items:center; gap:10px; }
+    .env-item .name { font-weight:600; color:var(--accent); font-family:'Fira Code',monospace; }
+    .env-item .value { color:var(--muted); font-size:13px; overflow:hidden; text-overflow:ellipsis; white-space:nowrap; flex:1; }
+    .env-item button { width:auto; margin:0; padding:6px 12px; font-size:12px; }
+    .tabs { display:flex; gap:8px; margin-bottom:16px; border-bottom:1px solid #1f2937; }
+    .tab { padding:10px 16px; cursor:pointer; border-bottom:2px solid transparent; font-weight:600; color:var(--muted); transition:all 0.2s; }
+    .tab.active { color:var(--accent); border-bottom-color:var(--accent); }
+    .tab:hover { color:var(--text); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🐳 Docker Environment Variable Manager</h1>
+    <p class="subtitle">Manage, validate, and convert environment variables for Docker containers and compose files</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Add Variables</h2>
+
+      <label for="varName">Variable Name</label>
+      <input id="varName" type="text" placeholder="e.g., DATABASE_URL, API_KEY" />
+
+      <label for="varValue">Value</label>
+      <input id="varValue" type="text" placeholder="Variable value" />
+
+      <label for="varDesc">Description (optional)</label>
+      <input id="varDesc" type="text" placeholder="What this variable is for" />
+
+      <button onclick="addVar()">Add Variable</button>
+
+      <label style="margin-top:20px;">Or Import from Text</label>
+      <textarea id="bulkImport" placeholder="KEY1=value1&#10;KEY2=value2&#10;KEY3=value3"></textarea>
+      <button class="secondary" onclick="importBulk()">Import All</button>
+    </section>
+
+    <section class="card">
+      <h2>Variables</h2>
+      <div id="varList" style="min-height:100px;max-height:400px;overflow-y:auto;"></div>
+      <button class="secondary" onclick="clearAll()">Clear All</button>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <div class="tabs">
+        <div class="tab active" onclick="switchTab('env')">ENV File</div>
+        <div class="tab" onclick="switchTab('docker')">Dockerfile</div>
+        <div class="tab" onclick="switchTab('compose')">Docker Compose</div>
+        <div class="tab" onclick="switchTab('shell')">Shell Export</div>
+        <div class="tab" onclick="switchTab('json')">JSON</div>
+      </div>
+
+      <pre id="output"># No variables added yet</pre>
+
+      <div style="display:grid;grid-template-columns:1fr 1fr 1fr;gap:10px;">
+        <button class="secondary" onclick="copyOutput()">📋 Copy</button>
+        <button class="secondary" onclick="downloadOutput()">💾 Download</button>
+        <button class="secondary" onclick="validateVars()">✓ Validate</button>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    let vars = {};
+    let currentTab = 'env';
+
+    function addVar() {
+      const name = document.getElementById('varName').value.trim();
+      const value = document.getElementById('varValue').value;
+      const desc = document.getElementById('varDesc').value.trim();
+
+      if (!name) {
+        alert('Variable name is required');
+        return;
+      }
+
+      if (!/^[A-Z_][A-Z0-9_]*$/.test(name)) {
+        if (!confirm('Variable name should be uppercase with underscores. Continue anyway?')) {
+          return;
+        }
+      }
+
+      vars[name] = { value, desc };
+
+      document.getElementById('varName').value = '';
+      document.getElementById('varValue').value = '';
+      document.getElementById('varDesc').value = '';
+
+      render();
+    }
+
+    function importBulk() {
+      const text = document.getElementById('bulkImport').value.trim();
+      if (!text) return;
+
+      text.split('\n').forEach(line => {
+        line = line.trim();
+        if (!line || line.startsWith('#')) return;
+
+        const idx = line.indexOf('=');
+        if (idx > 0) {
+          const name = line.slice(0, idx).trim();
+          const value = line.slice(idx + 1).trim().replace(/^["']|["']$/g, '');
+          vars[name] = { value, desc: '' };
+        }
+      });
+
+      document.getElementById('bulkImport').value = '';
+      render();
+    }
+
+    function removeVar(name) {
+      delete vars[name];
+      render();
+    }
+
+    function clearAll() {
+      if (Object.keys(vars).length === 0) return;
+      if (confirm('Clear all variables?')) {
+        vars = {};
+        render();
+      }
+    }
+
+    function switchTab(tab) {
+      currentTab = tab;
+      document.querySelectorAll('.tab').forEach(t => t.classList.remove('active'));
+      event.target.classList.add('active');
+      render();
+    }
+
+    function render() {
+      // Render variable list
+      const listEl = document.getElementById('varList');
+      if (Object.keys(vars).length === 0) {
+        listEl.innerHTML = '<div style="color:var(--muted);padding:12px;">No variables added yet</div>';
+      } else {
+        listEl.innerHTML = Object.entries(vars).map(([name, data]) =>
+          `<div class="env-item">
+            <div style="flex:1;">
+              <div class="name">${name}</div>
+              ${data.desc ? `<div style="font-size:12px;color:var(--muted);margin-top:4px;">${data.desc}</div>` : ''}
+            </div>
+            <div class="value">${data.value}</div>
+            <button onclick="removeVar('${name}')">✕</button>
+          </div>`
+        ).join('');
+      }
+
+      // Render output based on current tab
+      let output = '';
+      const entries = Object.entries(vars);
+
+      if (entries.length === 0) {
+        output = '# No variables added yet';
+      } else {
+        switch (currentTab) {
+          case 'env':
+            output = entries.map(([k, v]) => {
+              let line = v.desc ? `# ${v.desc}\n` : '';
+              const needsQuotes = /[\s#]/.test(v.value);
+              line += `${k}=${needsQuotes ? `"${v.value}"` : v.value}`;
+              return line;
+            }).join('\n');
+            break;
+
+          case 'docker':
+            output = 'FROM node:20-alpine\n\n';
+            output += entries.map(([k, v]) => {
+              let line = v.desc ? `# ${v.desc}\n` : '';
+              line += `ENV ${k}="${v.value}"`;
+              return line;
+            }).join('\n');
+            break;
+
+          case 'compose':
+            output = 'services:\n  app:\n    image: your-image:latest\n    environment:\n';
+            output += entries.map(([k, v]) => {
+              let line = v.desc ? `      # ${v.desc}\n` : '';
+              line += `      ${k}: "${v.value}"`;
+              return line;
+            }).join('\n');
+            break;
+
+          case 'shell':
+            output = entries.map(([k, v]) => {
+              let line = v.desc ? `# ${v.desc}\n` : '';
+              line += `export ${k}="${v.value}"`;
+              return line;
+            }).join('\n');
+            break;
+
+          case 'json':
+            const obj = entries.reduce((acc, [k, v]) => {
+              acc[k] = v.value;
+              return acc;
+            }, {});
+            output = JSON.stringify(obj, null, 2);
+            break;
+        }
+      }
+
+      document.getElementById('output').textContent = output;
+    }
+
+    function copyOutput() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    function downloadOutput() {
+      const text = document.getElementById('output').textContent;
+      const ext = { env: '.env', docker: 'Dockerfile', compose: 'docker-compose.yml', shell: '.sh', json: '.json' };
+      const filename = { env: '.env', docker: 'Dockerfile', compose: 'docker-compose.yml', shell: 'env.sh', json: 'env.json' };
+
+      const blob = new Blob([text], { type: 'text/plain' });
+      const url = URL.createObjectURL(blob);
+      const a = document.createElement('a');
+      a.href = url;
+      a.download = filename[currentTab];
+      a.click();
+      URL.revokeObjectURL(url);
+    }
+
+    function validateVars() {
+      const issues = [];
+      const warnings = [];
+
+      Object.entries(vars).forEach(([name, data]) => {
+        if (!/^[A-Z_][A-Z0-9_]*$/.test(name)) {
+          warnings.push(`"${name}" should be uppercase with underscores`);
+        }
+
+        if (!data.value) {
+          issues.push(`"${name}" has empty value`);
+        }
+
+        if (name.toLowerCase().includes('password') || name.toLowerCase().includes('secret') || name.toLowerCase().includes('key')) {
+          warnings.push(`"${name}" appears to be sensitive - use secrets management`);
+        }
+
+        if (data.value.length > 1000) {
+          warnings.push(`"${name}" value is very long (${data.value.length} chars)`);
+        }
+      });
+
+      let msg = '';
+      if (issues.length === 0 && warnings.length === 0) {
+        msg = '✅ All variables look good!\n\nRemember:\n• Use secrets management for sensitive data\n• Document all variables\n• Use .env.example files for templates';
+      } else {
+        if (issues.length > 0) {
+          msg += '❌ Issues:\n' + issues.map(i => `  • ${i}`).join('\n') + '\n\n';
+        }
+        if (warnings.length > 0) {
+          msg += '⚠️ Warnings:\n' + warnings.map(w => `  • ${w}`).join('\n');
+        }
+      }
+
+      alert(msg);
+    }
+
+    render();
+  </script>
+</body>
+</html>
diff --git a/tools/firewall-rule-translator/docs/README.md b/tools/firewall-rule-translator/docs/README.md
new file mode 100644
index 0000000..cf82a1e
--- /dev/null
+++ b/tools/firewall-rule-translator/docs/README.md
@@ -0,0 +1,34 @@
+# Firewall Rule Translator
+
+Convert firewall rules between iptables, UFW, firewalld, Windows Firewall, and cloud providers.
+
+## Features
+
+- Configure firewall rules with visual interface
+- Translate to multiple formats:
+  - iptables (Linux)
+  - UFW (Uncomplicated Firewall)
+  - firewalld (Linux)
+  - Windows Firewall
+  - AWS Security Groups
+  - Azure NSG
+  - GCP Firewall Rules
+- Support for TCP, UDP, ICMP protocols
+- Port ranges and CIDR notation
+- Inbound/outbound directions
+- Allow/deny actions
+- Optional descriptions
+
+## Usage
+
+1. Configure rule parameters (action, direction, protocol, ports, IPs)
+2. Add optional description
+3. Click "Translate to All Formats"
+4. View rules in all supported formats
+5. Copy specific format needed
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/firewall-rule-translator/docs/screenshot.png b/tools/firewall-rule-translator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/firewall-rule-translator/docs/screenshot.png differ
diff --git a/tools/firewall-rule-translator/index.html b/tools/firewall-rule-translator/index.html
new file mode 100644
index 0000000..e0280ee
--- /dev/null
+++ b/tools/firewall-rule-translator/index.html
@@ -0,0 +1,255 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Firewall Rule Translator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0f0a17; --panel:#1a1229; --text:#e5e7eb; --muted:#94a3b8; --accent:#ef4444; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 22% 28%,#2a1a3f,#0f0a17 65%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1600px; margin:0 auto; display:grid; grid-template-columns:repeat(auto-fit,minmax(450px,1fr)); gap:20px; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, select, textarea { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0f0a17; color:var(--text); font-size:14px; font-family:inherit; }
+    textarea { min-height:150px; font-family:'Fira Code',monospace; font-size:13px; resize:vertical; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#ef4444,#dc2626); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(239,68,68,0.3); }
+    button:hover { transform:translateY(-1px); }
+    button.secondary { background:linear-gradient(135deg,#8b5cf6,#7c3aed); box-shadow:0 8px 24px rgba(139,92,246,0.3); }
+    pre { background:#0f0a17; border:1px solid #1f2937; border-radius:10px; padding:16px; min-height:200px; max-height:500px; overflow-y:auto; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; white-space:pre-wrap; }
+    .tabs { display:flex; gap:8px; margin-bottom:16px; border-bottom:1px solid #1f2937; flex-wrap:wrap; }
+    .tab { padding:10px 16px; cursor:pointer; border-bottom:2px solid transparent; font-weight:600; color:var(--muted); font-size:14px; }
+    .tab.active { color:var(--accent); border-bottom-color:var(--accent); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🛡️ Firewall Rule Translator</h1>
+    <p class="subtitle">Convert firewall rules between iptables, UFW, firewalld, Windows Firewall, and cloud providers</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Rule Configuration</h2>
+
+      <label for="action">Action</label>
+      <select id="action">
+        <option value="allow">ALLOW</option>
+        <option value="deny">DENY</option>
+      </select>
+
+      <label for="direction">Direction</label>
+      <select id="direction">
+        <option value="inbound">Inbound</option>
+        <option value="outbound">Outbound</option>
+      </select>
+
+      <label for="protocol">Protocol</label>
+      <select id="protocol">
+        <option value="tcp">TCP</option>
+        <option value="udp">UDP</option>
+        <option value="icmp">ICMP</option>
+        <option value="all">ALL</option>
+      </select>
+
+      <label for="port">Port/Port Range</label>
+      <input id="port" type="text" placeholder="22, 80, 443, 8000-9000" />
+
+      <label for="source">Source IP/CIDR</label>
+      <input id="source" type="text" placeholder="0.0.0.0/0 or 192.168.1.0/24" value="0.0.0.0/0" />
+
+      <label for="destination">Destination IP/CIDR</label>
+      <input id="destination" type="text" placeholder="0.0.0.0/0 or 10.0.0.0/8" value="0.0.0.0/0" />
+
+      <label for="description">Description (optional)</label>
+      <input id="description" type="text" placeholder="SSH access for admin" />
+
+      <button onclick="translate()">Translate to All Formats</button>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Translated Rules</h2>
+      <div class="tabs">
+        <div class="tab active" onclick="switchTab('iptables')">iptables</div>
+        <div class="tab" onclick="switchTab('ufw')">UFW</div>
+        <div class="tab" onclick="switchTab('firewalld')">firewalld</div>
+        <div class="tab" onclick="switchTab('windows')">Windows</div>
+        <div class="tab" onclick="switchTab('aws')">AWS</div>
+        <div class="tab" onclick="switchTab('azure')">Azure</div>
+        <div class="tab" onclick="switchTab('gcp')">GCP</div>
+      </div>
+      <pre id="output"># Configure a rule and click "Translate" to see the output</pre>
+      <button class="secondary" onclick="copyOutput()">📋 Copy to Clipboard</button>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Common Firewall Rules Examples</h2>
+      <div style="display:grid;grid-template-columns:repeat(auto-fit,minmax(200px,1fr));gap:10px;margin-top:12px;">
+        <button class="secondary" onclick="loadExample('ssh')">SSH (22)</button>
+        <button class="secondary" onclick="loadExample('http')">HTTP (80)</button>
+        <button class="secondary" onclick="loadExample('https')">HTTPS (443)</button>
+        <button class="secondary" onclick="loadExample('mysql')">MySQL (3306)</button>
+        <button class="secondary" onclick="loadExample('postgres')">PostgreSQL (5432)</button>
+        <button class="secondary" onclick="loadExample('rdp')">RDP (3389)</button>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    let currentTab = 'iptables';
+
+    const examples = {
+      ssh: { action: 'allow', direction: 'inbound', protocol: 'tcp', port: '22', source: '0.0.0.0/0', destination: '0.0.0.0/0', description: 'Allow SSH access' },
+      http: { action: 'allow', direction: 'inbound', protocol: 'tcp', port: '80', source: '0.0.0.0/0', destination: '0.0.0.0/0', description: 'Allow HTTP traffic' },
+      https: { action: 'allow', direction: 'inbound', protocol: 'tcp', port: '443', source: '0.0.0.0/0', destination: '0.0.0.0/0', description: 'Allow HTTPS traffic' },
+      mysql: { action: 'allow', direction: 'inbound', protocol: 'tcp', port: '3306', source: '10.0.0.0/8', destination: '0.0.0.0/0', description: 'Allow MySQL from private network' },
+      postgres: { action: 'allow', direction: 'inbound', protocol: 'tcp', port: '5432', source: '10.0.0.0/8', destination: '0.0.0.0/0', description: 'Allow PostgreSQL from private network' },
+      rdp: { action: 'allow', direction: 'inbound', protocol: 'tcp', port: '3389', source: '192.168.1.0/24', destination: '0.0.0.0/0', description: 'Allow RDP from local network' }
+    };
+
+    function loadExample(type) {
+      const ex = examples[type];
+      document.getElementById('action').value = ex.action;
+      document.getElementById('direction').value = ex.direction;
+      document.getElementById('protocol').value = ex.protocol;
+      document.getElementById('port').value = ex.port;
+      document.getElementById('source').value = ex.source;
+      document.getElementById('destination').value = ex.destination;
+      document.getElementById('description').value = ex.description;
+      translate();
+    }
+
+    function switchTab(tab) {
+      currentTab = tab;
+      document.querySelectorAll('.tab').forEach(t => t.classList.toggle('active', t.textContent.toLowerCase() === tab));
+      translate();
+    }
+
+    function translate() {
+      const action = document.getElementById('action').value;
+      const direction = document.getElementById('direction').value;
+      const protocol = document.getElementById('protocol').value;
+      const port = document.getElementById('port').value.trim();
+      const source = document.getElementById('source').value.trim();
+      const destination = document.getElementById('destination').value.trim();
+      const description = document.getElementById('description').value.trim();
+
+      let output = '';
+      const chain = direction === 'inbound' ? 'INPUT' : 'OUTPUT';
+      const iptablesAction = action === 'allow' ? 'ACCEPT' : 'DROP';
+
+      if (currentTab === 'iptables') {
+        output = `# ${description || 'Firewall rule'}\n`;
+        output += `sudo iptables -A ${chain}`;
+        if (protocol !== 'all') output += ` -p ${protocol}`;
+        if (source !== '0.0.0.0/0') output += ` -s ${source}`;
+        if (destination !== '0.0.0.0/0') output += ` -d ${destination}`;
+        if (port && protocol !== 'icmp' && protocol !== 'all') output += ` --dport ${port}`;
+        output += ` -j ${iptablesAction}`;
+        output += `\n\n# Save rules\nsudo iptables-save > /etc/iptables/rules.v4`;
+      } else if (currentTab === 'ufw') {
+        output = `# ${description || 'Firewall rule'}\n`;
+        const ufwAction = action === 'allow' ? 'allow' : 'deny';
+        output += `sudo ufw ${ufwAction}`;
+        if (direction === 'inbound') output += ` in`;
+        if (direction === 'outbound') output += ` out`;
+        if (protocol !== 'all') output += ` proto ${protocol}`;
+        if (source !== '0.0.0.0/0') output += ` from ${source}`;
+        if (destination !== '0.0.0.0/0') output += ` to ${destination}`;
+        if (port && protocol !== 'icmp') output += ` port ${port}`;
+        if (description) output += ` comment '${description}'`;
+        output += `\n\n# Enable UFW\nsudo ufw enable`;
+      } else if (currentTab === 'firewalld') {
+        output = `# ${description || 'Firewall rule'}\n`;
+        if (action === 'allow') {
+          if (port && protocol !== 'icmp') {
+            output += `sudo firewall-cmd --permanent --add-port=${port}/${protocol}\n`;
+          } else if (protocol === 'icmp') {
+            output += `sudo firewall-cmd --permanent --add-protocol=icmp\n`;
+          }
+          if (source !== '0.0.0.0/0') {
+            output += `sudo firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="${source}" accept'\n`;
+          }
+        } else {
+          output += `sudo firewall-cmd --permanent --add-rich-rule='rule family="ipv4"`;
+          if (source !== '0.0.0.0/0') output += ` source address="${source}"`;
+          if (port && protocol !== 'icmp') output += ` port port="${port}" protocol="${protocol}"`;
+          output += ` reject'\n`;
+        }
+        output += `\n# Reload firewall\nsudo firewall-cmd --reload`;
+      } else if (currentTab === 'windows') {
+        output = `# ${description || 'Firewall rule'}\n`;
+        const winAction = action === 'allow' ? 'Allow' : 'Block';
+        const winDirection = direction === 'inbound' ? 'Inbound' : 'Outbound';
+        output += `New-NetFirewallRule -DisplayName "${description || 'Custom Rule'}" ``\n`;
+        output += `  -Direction ${winDirection} ``\n`;
+        output += `  -Action ${winAction} ``\n`;
+        if (protocol !== 'all') output += `  -Protocol ${protocol.toUpperCase()} ``\n`;
+        if (port && protocol !== 'icmp') output += `  -LocalPort ${port} ``\n`;
+        if (source !== '0.0.0.0/0') output += `  -RemoteAddress ${source} ``\n`;
+        output += `  -Enabled True`;
+      } else if (currentTab === 'aws') {
+        output = `# ${description || 'Firewall rule'}\n# AWS Security Group Rule (JSON)\n\n`;
+        output += `{\n`;
+        output += `  "IpPermissions": [\n`;
+        output += `    {\n`;
+        output += `      "IpProtocol": "${protocol === 'all' ? '-1' : protocol}",\n`;
+        if (port && protocol !== 'icmp' && protocol !== 'all') {
+          const ports = port.split('-');
+          output += `      "FromPort": ${ports[0]},\n`;
+          output += `      "ToPort": ${ports.length > 1 ? ports[1] : ports[0]},\n`;
+        }
+        output += `      "IpRanges": [\n`;
+        output += `        {\n`;
+        output += `          "CidrIp": "${source}",\n`;
+        output += `          "Description": "${description || 'Custom rule'}"\n`;
+        output += `        }\n`;
+        output += `      ]\n`;
+        output += `    }\n`;
+        output += `  ]\n`;
+        output += `}\n\n# CLI Command\n`;
+        output += `aws ec2 ${action === 'allow' ? 'authorize' : 'revoke'}-security-group-${direction === 'inbound' ? 'ingress' : 'egress'} \\
+  --group-id sg-xxxxxxxxx \\
+  --protocol ${protocol === 'all' ? '-1' : protocol} \\`;
+        if (port && protocol !== 'icmp') output += `\n  --port ${port} \\`;
+        output += `\n  --cidr ${source}`;
+      } else if (currentTab === 'azure') {
+        output = `# ${description || 'Firewall rule'}\n# Azure Network Security Group Rule\n\n`;
+        output += `az network nsg rule create \\\n`;
+        output += `  --resource-group myResourceGroup \\\n`;
+        output += `  --nsg-name myNsg \\\n`;
+        output += `  --name ${description.replace(/\s+/g, '_') || 'CustomRule'} \\\n`;
+        output += `  --priority 100 \\\n`;
+        output += `  --access ${action === 'allow' ? 'Allow' : 'Deny'} \\\n`;
+        output += `  --direction ${direction === 'inbound' ? 'Inbound' : 'Outbound'} \\\n`;
+        output += `  --protocol ${protocol === 'all' ? '*' : protocol.toUpperCase()} \\\n`;
+        if (port && protocol !== 'icmp') output += `  --destination-port-ranges ${port} \\\n`;
+        output += `  --source-address-prefixes ${source} \\\n`;
+        output += `  --destination-address-prefixes ${destination}`;
+      } else if (currentTab === 'gcp') {
+        output = `# ${description || 'Firewall rule'}\n# Google Cloud Firewall Rule\n\n`;
+        output += `gcloud compute firewall-rules create ${description.replace(/\s+/g, '-').toLowerCase() || 'custom-rule'} \\\n`;
+        output += `  --action ${action.toUpperCase()} \\\n`;
+        output += `  --direction ${direction.toUpperCase()} \\\n`;
+        output += `  --rules ${protocol}${port && protocol !== 'icmp' ? ':' + port : ''} \\\n`;
+        if (source !== '0.0.0.0/0') output += `  --source-ranges ${source} \\\n`;
+        if (destination !== '0.0.0.0/0') output += `  --destination-ranges ${destination} \\\n`;
+        output += `  --description "${description || 'Custom firewall rule'}"`;
+      }
+
+      document.getElementById('output').textContent = output;
+    }
+
+    function copyOutput() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    translate();
+  </script>
+</body>
+</html>
diff --git a/tools/graphql-query-complexity-analyzer/index.html b/tools/graphql-query-complexity-analyzer/index.html
index 0c48722..9042791 100644
--- a/tools/graphql-query-complexity-analyzer/index.html
+++ b/tools/graphql-query-complexity-analyzer/index.html
@@ -14,9 +14,18 @@
     label { display:block; margin:8px 0 6px; font-weight:600; color:var(--muted); }
     textarea, select { width:100%; background:#0b1224; border:1px solid #1f2937; border-radius:12px; padding:12px; color:var(--text); resize:vertical; min-height:180px; box-sizing:border-box; }
     button { margin-top:12px; background:linear-gradient(90deg,#f472b6,#a855f7); border:none; color:#fff; padding:12px 16px; border-radius:12px; font-weight:700; cursor:pointer; width:100%; box-shadow:0 16px 36px rgba(168,85,247,0.35); }
+    button.secondary { background:linear-gradient(90deg,#8b5cf6,#7c3aed); box-shadow:0 16px 36px rgba(139,92,246,0.35); }
+    button:hover { transform:translateY(-1px); }
     pre { background:#0b1224; border:1px solid #1f2937; border-radius:12px; padding:12px; white-space:pre-wrap; word-break:break-word; min-height:140px; margin:0; }
     .badge { display:inline-flex; padding:6px 10px; border-radius:10px; border:1px solid #1f2937; margin:4px 6px 4px 0; font-size:12px; }
     .score { font-size:32px; font-weight:800; }
+    .breakdown-item { background:#0b1224; border:1px solid #1f2937; border-radius:8px; padding:10px; margin:8px 0; display:flex; justify-content:space-between; align-items:center; }
+    .breakdown-label { color:var(--muted); font-weight:600; }
+    .breakdown-value { color:var(--accent); font-weight:700; font-size:18px; }
+    input[type="number"] { width:100%; background:#0b1224; border:1px solid #1f2937; border-radius:12px; padding:12px; color:var(--text); box-sizing:border-box; }
+    .optimization { background:#0b1224; border-left:3px solid var(--accent); border-radius:8px; padding:12px; margin:8px 0; }
+    .optimization-title { font-weight:700; color:var(--accent); margin-bottom:6px; }
+    .optimization-desc { color:var(--muted); font-size:14px; }
   </style>
 </head>
 <body>
@@ -46,7 +55,10 @@ <h1>GraphQL Query Complexity Analyzer</h1>
     }
   }
 }</textarea>
-      <button onclick="analyze()">Analyze</button>
+      <button onclick="analyze()">Analyze Query</button>
+
+      <label for="budget" style="margin-top:16px;">Performance Budget (optional)</label>
+      <input id="budget" type="number" placeholder="e.g., 100" />
     </section>
 
     <section class="card">
@@ -59,23 +71,58 @@ <h1>GraphQL Query Complexity Analyzer</h1>
       </div>
       <pre id="details"></pre>
     </section>
+
+    <section class="card">
+      <h3 style="margin:0 0 12px;">Cost Breakdown</h3>
+      <div id="breakdown"></div>
+    </section>
+
+    <section class="card">
+      <h3 style="margin:0 0 12px;">Optimization Suggestions</h3>
+      <div id="optimizations"></div>
+      <button class="secondary" onclick="exportReport()">📊 Export Report</button>
+    </section>
   </main>
 
   <script>
+    let currentAnalysis = null;
+
     function analyze() {
       const text = document.getElementById('query').value;
+      const budget = parseFloat(document.getElementById('budget').value) || null;
       const lines = text.split(/\n/);
+
       let depth = 0, maxDepth = 0, fields = 0, lists = 0;
+      let mutations = 0, queries = 0, fragments = 0;
+      let listSizes = [];
+
       lines.forEach(line => {
         const open = (line.match(/\{/g) || []).length;
         const close = (line.match(/\}/g) || []).length;
         depth += open - close;
         maxDepth = Math.max(maxDepth, depth);
         const stripped = line.trim();
-        if (/\b(first|last|limit)\s*:\s*\d+/i.test(stripped)) lists += 1;
+
+        if (/^mutation\s/.test(stripped)) mutations++;
+        if (/^query\s/.test(stripped)) queries++;
+        if (/^fragment\s/.test(stripped)) fragments++;
+
+        const listMatch = stripped.match(/\b(first|last|limit)\s*:\s*(\d+)/i);
+        if (listMatch) {
+          lists += 1;
+          listSizes.push(parseInt(listMatch[2]));
+        }
+
         if (/^[A-Za-z0-9_]+/.test(stripped) && stripped.includes(':') === false && stripped.includes('{') === false) fields += 1;
       });
-      const estimated = fields * (1 + maxDepth * 0.6) + lists * 8;
+
+      // Calculate costs
+      const fieldCost = fields * (1 + maxDepth * 0.6);
+      const listCost = lists * 8;
+      const depthPenalty = maxDepth > 5 ? (maxDepth - 5) * 10 : 0;
+      const mutationCost = mutations * 15;
+
+      const estimated = fieldCost + listCost + depthPenalty + mutationCost;
       const score = Math.round(estimated * 10) / 10;
       const risk = score > 80 ? 'High' : score > 40 ? 'Medium' : 'Low';
 
@@ -83,6 +130,8 @@ <h1>GraphQL Query Complexity Analyzer</h1>
       if (maxDepth > 4) suggestions.push(`Depth ${maxDepth}: consider flattening or batching.`);
       if (lists > 0) suggestions.push(`${lists} list argument(s) detected: ensure limits & pagination.`);
       if (fields > 40) suggestions.push(`High field count (${fields}): trim the selection set.`);
+      if (listSizes.some(size => size > 100)) suggestions.push('Large list limits detected (>100): consider smaller page sizes.');
+      if (mutations > 0 && queries > 0) suggestions.push('Mixed mutations and queries: consider separating for better tracing.');
       if (!suggestions.length) suggestions.push('Looks good! Still enforce server-side limits.');
 
       document.getElementById('score').textContent = score;
@@ -91,10 +140,159 @@ <h1>GraphQL Query Complexity Analyzer</h1>
         `Fields: ${fields}`,
         `Max depth: ${maxDepth}`,
         `List args: ${lists}`,
+        `Operations: ${queries} queries, ${mutations} mutations`,
+        `Fragments: ${fragments}`,
         '',
         'Notes:',
         ...suggestions.map(s => `• ${s}`)
       ].join('\n');
+
+      // Cost breakdown
+      let breakdownHTML = `
+        <div class="breakdown-item">
+          <span class="breakdown-label">Field Selection Cost</span>
+          <span class="breakdown-value">${fieldCost.toFixed(1)}</span>
+        </div>
+        <div class="breakdown-item">
+          <span class="breakdown-label">List Operations Cost</span>
+          <span class="breakdown-value">${listCost.toFixed(1)}</span>
+        </div>`;
+
+      if (depthPenalty > 0) {
+        breakdownHTML += `
+        <div class="breakdown-item">
+          <span class="breakdown-label">Depth Penalty (>${5})</span>
+          <span class="breakdown-value">${depthPenalty.toFixed(1)}</span>
+        </div>`;
+      }
+
+      if (mutationCost > 0) {
+        breakdownHTML += `
+        <div class="breakdown-item">
+          <span class="breakdown-label">Mutation Cost</span>
+          <span class="breakdown-value">${mutationCost.toFixed(1)}</span>
+        </div>`;
+      }
+
+      if (budget) {
+        const withinBudget = score <= budget;
+        breakdownHTML += `
+        <div class="breakdown-item" style="border-top:2px solid ${withinBudget ? '#22c55e' : '#ef4444'};margin-top:12px;padding-top:12px;">
+          <span class="breakdown-label">Budget Status</span>
+          <span class="breakdown-value" style="color:${withinBudget ? '#22c55e' : '#ef4444'};">${withinBudget ? '✓ Within' : '✗ Exceeded'}</span>
+        </div>`;
+      }
+
+      document.getElementById('breakdown').innerHTML = breakdownHTML;
+
+      // Optimization suggestions
+      let optimizationsHTML = '';
+
+      if (fields > 30) {
+        optimizationsHTML += `
+        <div class="optimization">
+          <div class="optimization-title">Reduce Field Selection</div>
+          <div class="optimization-desc">Query selects ${fields} fields. Consider using fragments to reuse common field sets and only request necessary data.</div>
+        </div>`;
+      }
+
+      if (maxDepth > 3) {
+        optimizationsHTML += `
+        <div class="optimization">
+          <div class="optimization-title">Flatten Query Structure</div>
+          <div class="optimization-desc">Query depth is ${maxDepth}. Deep nesting increases resolver execution time. Consider using separate queries or implementing DataLoader for batching.</div>
+        </div>`;
+      }
+
+      if (lists > 2) {
+        optimizationsHTML += `
+        <div class="optimization">
+          <div class="optimization-title">Implement Cursor-Based Pagination</div>
+          <div class="optimization-desc">Query has ${lists} list operations. Use cursor-based pagination with 'after' arguments for better performance and scalability.</div>
+        </div>`;
+      }
+
+      if (fragments === 0 && fields > 20) {
+        optimizationsHTML += `
+        <div class="optimization">
+          <div class="optimization-title">Use Fragments</div>
+          <div class="optimization-desc">No fragments detected. Extract common field selections into reusable fragments to reduce duplication and complexity.</div>
+        </div>`;
+      }
+
+      if (!optimizationsHTML) {
+        optimizationsHTML = '<div style="color:var(--muted);">No optimizations needed - query looks efficient!</div>';
+      }
+
+      document.getElementById('optimizations').innerHTML = optimizationsHTML;
+
+      // Store for export
+      currentAnalysis = {
+        score,
+        risk,
+        fields,
+        maxDepth,
+        lists,
+        queries,
+        mutations,
+        fragments,
+        fieldCost,
+        listCost,
+        depthPenalty,
+        mutationCost,
+        suggestions,
+        budget
+      };
+    }
+
+    function exportReport() {
+      if (!currentAnalysis) {
+        alert('Analyze a query first');
+        return;
+      }
+
+      const report = `GRAPHQL QUERY COMPLEXITY REPORT
+${'='.repeat(80)}
+
+Generated: ${new Date().toISOString()}
+
+OVERALL SCORE: ${currentAnalysis.score}
+Risk Level: ${currentAnalysis.risk}
+${currentAnalysis.budget ? `Performance Budget: ${currentAnalysis.budget} (${currentAnalysis.score <= currentAnalysis.budget ? 'PASS' : 'FAIL'})` : ''}
+
+METRICS
+${'-'.repeat(80)}
+Fields Selected: ${currentAnalysis.fields}
+Max Depth: ${currentAnalysis.maxDepth}
+List Operations: ${currentAnalysis.lists}
+Queries: ${currentAnalysis.queries}
+Mutations: ${currentAnalysis.mutations}
+Fragments: ${currentAnalysis.fragments}
+
+COST BREAKDOWN
+${'-'.repeat(80)}
+Field Selection: ${currentAnalysis.fieldCost.toFixed(1)}
+List Operations: ${currentAnalysis.listCost.toFixed(1)}
+Depth Penalty: ${currentAnalysis.depthPenalty.toFixed(1)}
+Mutation Cost: ${currentAnalysis.mutationCost.toFixed(1)}
+Total: ${currentAnalysis.score}
+
+RECOMMENDATIONS
+${'-'.repeat(80)}
+${currentAnalysis.suggestions.map((s, i) => `${i + 1}. ${s}`).join('\n')}
+
+QUERY ANALYZED
+${'-'.repeat(80)}
+${document.getElementById('query').value}
+`;
+
+      const blob = new Blob([report], { type: 'text/plain' });
+      const url = URL.createObjectURL(blob);
+      const a = document.createElement('a');
+      a.href = url;
+      a.download = `graphql-complexity-report-${Date.now()}.txt`;
+      a.click();
+      URL.revokeObjectURL(url);
     }
 
     analyze();
diff --git a/tools/graphql-schema-visualizer/docs/README.md b/tools/graphql-schema-visualizer/docs/README.md
new file mode 100644
index 0000000..ffff49e
--- /dev/null
+++ b/tools/graphql-schema-visualizer/docs/README.md
@@ -0,0 +1,28 @@
+# GraphQL Schema Visualizer
+
+Visualize GraphQL schemas with interactive diagrams and type exploration.
+
+## Features
+
+- Parse GraphQL Schema Definition Language (SDL)
+- Interactive visual diagram
+- Type exploration
+- Relationship mapping
+- Field inspection
+- Query and Mutation type display
+- Input type visualization
+- Sample schema included
+
+## Usage
+
+1. Paste GraphQL schema in SDL format
+2. Click "Visualize Schema"
+3. Explore types and relationships
+4. Navigate interactive diagram
+5. Inspect fields and connections
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/graphql-schema-visualizer/docs/screenshot.png b/tools/graphql-schema-visualizer/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/graphql-schema-visualizer/docs/screenshot.png differ
diff --git a/tools/graphql-schema-visualizer/index.html b/tools/graphql-schema-visualizer/index.html
new file mode 100644
index 0000000..bda001c
--- /dev/null
+++ b/tools/graphql-schema-visualizer/index.html
@@ -0,0 +1,272 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>GraphQL Schema Visualizer</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0c0a1e; --panel:#15122f; --text:#e5e7eb; --muted:#94a3b8; --accent:#e879f9; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 15% 25%,#2d1b4e,#0c0a1e 65%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1800px; margin:0 auto; }
+    .grid { display:grid; grid-template-columns:repeat(auto-fit,minmax(450px,1fr)); gap:20px; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    textarea { width:100%; min-height:300px; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0c0a1e; color:var(--text); font-size:13px; font-family:'Fira Code',monospace; resize:vertical; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#e879f9,#c026d3); color:#000; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(232,121,249,0.3); }
+    button:hover { transform:translateY(-1px); }
+    #canvas { width:100%; height:600px; background:#0c0a1e; border:1px solid #1f2937; border-radius:10px; }
+    .type-box { background:#15122f; border:1px solid #1f2937; border-radius:8px; padding:12px; margin:8px 0; }
+    .type-name { font-weight:700; color:var(--accent); margin-bottom:8px; }
+    .field { padding:4px 0; font-family:'Fira Code',monospace; font-size:13px; color:var(--muted); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🔷 GraphQL Schema Visualizer</h1>
+    <p class="subtitle">Visualize GraphQL schemas with interactive diagrams and type exploration</p>
+  </header>
+
+  <main>
+    <div class="grid">
+      <section class="card">
+        <h2>GraphQL Schema (SDL)</h2>
+        <label for="schema">Paste your schema definition</label>
+        <textarea id="schema" spellcheck="false">schema {
+  query: Query
+  mutation: Mutation
+}
+
+type Query {
+  user(id: ID!): User
+  users: [User!]!
+  post(id: ID!): Post
+  posts(limit: Int): [Post!]!
+}
+
+type Mutation {
+  createUser(input: CreateUserInput!): User!
+  updateUser(id: ID!, input: UpdateUserInput!): User
+  deleteUser(id: ID!): Boolean!
+}
+
+type User {
+  id: ID!
+  name: String!
+  email: String!
+  posts: [Post!]!
+  createdAt: DateTime!
+}
+
+type Post {
+  id: ID!
+  title: String!
+  content: String!
+  author: User!
+  published: Boolean!
+  createdAt: DateTime!
+}
+
+input CreateUserInput {
+  name: String!
+  email: String!
+}
+
+input UpdateUserInput {
+  name: String
+  email: String
+}
+
+scalar DateTime</textarea>
+        <button onclick="visualize()">Visualize Schema</button>
+      </section>
+
+      <section class="card">
+        <h2>Schema Visualization</h2>
+        <canvas id="canvas"></canvas>
+      </section>
+    </div>
+
+    <section class="card" style="margin-top:20px;">
+      <h2>Type Explorer</h2>
+      <div id="types"></div>
+    </section>
+  </main>
+
+  <script>
+    function parseSchema(sdl) {
+      const types = [];
+      const typeRegex = /type\s+(\w+)\s*\{([^}]+)\}/gi;
+      const inputRegex = /input\s+(\w+)\s*\{([^}]+)\}/gi;
+      const enumRegex = /enum\s+(\w+)\s*\{([^}]+)\}/gi;
+      const scalarRegex = /scalar\s+(\w+)/gi;
+
+      let match;
+
+      while ((match = typeRegex.exec(sdl)) !== null) {
+        const [, name, body] = match;
+        const fields = body.trim().split('\n').map(line => line.trim()).filter(Boolean);
+        types.push({ kind: 'TYPE', name, fields });
+      }
+
+      while ((match = inputRegex.exec(sdl)) !== null) {
+        const [, name, body] = match;
+        const fields = body.trim().split('\n').map(line => line.trim()).filter(Boolean);
+        types.push({ kind: 'INPUT', name, fields });
+      }
+
+      while ((match = enumRegex.exec(sdl)) !== null) {
+        const [, name, body] = match;
+        const fields = body.trim().split('\n').map(line => line.trim()).filter(Boolean);
+        types.push({ kind: 'ENUM', name, fields });
+      }
+
+      while ((match = scalarRegex.exec(sdl)) !== null) {
+        types.push({ kind: 'SCALAR', name: match[1], fields: [] });
+      }
+
+      return types;
+    }
+
+    function visualize() {
+      const sdl = document.getElementById('schema').value;
+      const types = parseSchema(sdl);
+
+      renderCanvas(types);
+      renderTypeExplorer(types);
+    }
+
+    function renderCanvas(types) {
+      const canvas = document.getElementById('canvas');
+      const ctx = canvas.getContext('2d');
+      const dpr = window.devicePixelRatio || 1;
+
+      canvas.width = canvas.offsetWidth * dpr;
+      canvas.height = canvas.offsetHeight * dpr;
+      ctx.scale(dpr, dpr);
+
+      const w = canvas.offsetWidth;
+      const h = canvas.offsetHeight;
+
+      ctx.clearRect(0, 0, w, h);
+
+      // Draw background grid
+      ctx.strokeStyle = '#1f2937';
+      ctx.lineWidth = 0.5;
+      for (let x = 0; x < w; x += 40) {
+        ctx.beginPath();
+        ctx.moveTo(x, 0);
+        ctx.lineTo(x, h);
+        ctx.stroke();
+      }
+      for (let y = 0; y < h; y += 40) {
+        ctx.beginPath();
+        ctx.moveTo(0, y);
+        ctx.lineTo(w, y);
+        ctx.stroke();
+      }
+
+      // Position types in a grid
+      const boxWidth = 180;
+      const boxHeight = 40;
+      const padding = 60;
+      const cols = Math.floor((w - padding) / (boxWidth + padding));
+
+      ctx.font = '14px Inter, sans-serif';
+      ctx.textAlign = 'center';
+      ctx.textBaseline = 'middle';
+
+      types.forEach((type, idx) => {
+        const col = idx % cols;
+        const row = Math.floor(idx / cols);
+        const x = padding + col * (boxWidth + padding);
+        const y = padding + row * (boxHeight + padding);
+
+        // Draw box
+        const colors = {
+          TYPE: '#e879f9',
+          INPUT: '#22d3ee',
+          ENUM: '#f59e0b',
+          SCALAR: '#10b981'
+        };
+        const color = colors[type.kind] || '#94a3b8';
+
+        ctx.fillStyle = '#15122f';
+        ctx.fillRect(x, y, boxWidth, boxHeight);
+
+        ctx.strokeStyle = color;
+        ctx.lineWidth = 2;
+        ctx.strokeRect(x, y, boxWidth, boxHeight);
+
+        // Draw text
+        ctx.fillStyle = color;
+        ctx.fillText(type.name, x + boxWidth / 2, y + boxHeight / 2 - 5);
+
+        ctx.fillStyle = '#94a3b8';
+        ctx.font = '10px Inter, sans-serif';
+        ctx.fillText(type.kind, x + boxWidth / 2, y + boxHeight / 2 + 10);
+        ctx.font = '14px Inter, sans-serif';
+      });
+
+      // Draw connections for type relationships
+      ctx.strokeStyle = '#1f2937';
+      ctx.lineWidth = 1.5;
+      ctx.setLineDash([5, 5]);
+
+      types.forEach((type, idx) => {
+        if (type.kind !== 'TYPE') return;
+
+        const col = idx % cols;
+        const row = Math.floor(idx / cols);
+        const x1 = padding + col * (boxWidth + padding) + boxWidth / 2;
+        const y1 = padding + row * (boxHeight + padding) + boxHeight;
+
+        type.fields.forEach(field => {
+          const match = field.match(/:\s*\[?(\w+)/);
+          if (!match) return;
+          const refType = match[1];
+          const refIdx = types.findIndex(t => t.name === refType);
+          if (refIdx === -1) return;
+
+          const refCol = refIdx % cols;
+          const refRow = Math.floor(refIdx / cols);
+          const x2 = padding + refCol * (boxWidth + padding) + boxWidth / 2;
+          const y2 = padding + refRow * (boxHeight + padding);
+
+          ctx.beginPath();
+          ctx.moveTo(x1, y1);
+          ctx.lineTo(x2, y2);
+          ctx.stroke();
+        });
+      });
+
+      ctx.setLineDash([]);
+    }
+
+    function renderTypeExplorer(types) {
+      let html = '';
+
+      types.forEach(type => {
+        html += `<div class="type-box">`;
+        html += `<div class="type-name">${type.kind}: ${type.name}</div>`;
+        if (type.fields.length > 0) {
+          type.fields.forEach(field => {
+            html += `<div class="field">${field}</div>`;
+          });
+        } else {
+          html += `<div class="field" style="color:var(--muted);">No fields</div>`;
+        }
+        html += `</div>`;
+      });
+
+      document.getElementById('types').innerHTML = html;
+    }
+
+    visualize();
+  </script>
+</body>
+</html>
diff --git a/tools/http-request-builder/docs/README.md b/tools/http-request-builder/docs/README.md
new file mode 100644
index 0000000..61e741e
--- /dev/null
+++ b/tools/http-request-builder/docs/README.md
@@ -0,0 +1,34 @@
+# HTTP Request Builder
+
+Build and test HTTP requests with full control over methods, headers, and body.
+
+## Features
+
+- Support all HTTP methods (GET, POST, PUT, DELETE, PATCH, HEAD, OPTIONS, TRACE)
+- Query parameter builder
+- Custom headers management
+- Multiple body formats:
+  - None
+  - JSON
+  - Form Data
+  - Raw text
+- Request preview
+- Simulated response display
+- Export as cURL command
+- Copy to clipboard
+
+## Usage
+
+1. Select HTTP method
+2. Enter URL
+3. Add query parameters (optional)
+4. Add custom headers (optional)
+5. Configure request body if needed
+6. Send request (simulated)
+7. View response or export as cURL
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline (simulated requests)
diff --git a/tools/http-request-builder/docs/screenshot.png b/tools/http-request-builder/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/http-request-builder/docs/screenshot.png differ
diff --git a/tools/http-request-builder/index.html b/tools/http-request-builder/index.html
new file mode 100644
index 0000000..d9984ac
--- /dev/null
+++ b/tools/http-request-builder/index.html
@@ -0,0 +1,373 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>HTTP Request Builder</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a1017; --panel:#101820; --text:#e5e7eb; --muted:#94a3b8; --accent:#06b6d4; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 18% 25%,#1a3a4f,#0a1017 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1800px; margin:0 auto; display:grid; grid-template-columns:1fr 1fr; gap:20px; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, textarea, select { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0a1017; color:var(--text); font-size:14px; font-family:inherit; }
+    textarea { min-height:120px; font-family:'Fira Code',monospace; font-size:13px; resize:vertical; }
+    select { cursor:pointer; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#06b6d4,#0891b2); color:#000; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(6,182,212,0.3); }
+    button:hover { transform:translateY(-1px); }
+    button.secondary { background:linear-gradient(135deg,#6366f1,#4f46e5); color:#fff; box-shadow:0 8px 24px rgba(99,102,241,0.3); }
+    pre { background:#0a1017; border:1px solid #1f2937; border-radius:10px; padding:16px; min-height:200px; max-height:500px; overflow-y:auto; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; white-space:pre-wrap; word-break:break-all; }
+    .method-grid { display:grid; grid-template-columns:repeat(4,1fr); gap:8px; margin-bottom:16px; }
+    .method-btn { padding:10px; border:1px solid #1f2937; border-radius:8px; background:rgba(6,182,212,0.08); cursor:pointer; font-weight:600; text-align:center; transition:all 0.2s; }
+    .method-btn:hover, .method-btn.active { background:rgba(6,182,212,0.2); border-color:var(--accent); color:var(--accent); }
+    .header-item, .param-item { background:#0a1017; border:1px solid #1f2937; border-radius:8px; padding:10px; margin:8px 0; display:grid; grid-template-columns:1fr 1fr auto; gap:8px; align-items:center; }
+    .header-item input, .param-item input { padding:8px; font-size:13px; }
+    .header-item button, .param-item button { padding:6px 12px; font-size:12px; margin:0; width:auto; background:#dc2626; }
+    .add-btn { background:transparent; border:1px solid var(--accent); color:var(--accent); }
+    .add-btn:hover { background:rgba(6,182,212,0.1); }
+    .tabs { display:flex; gap:8px; margin-bottom:16px; border-bottom:1px solid #1f2937; }
+    .tab { padding:10px 16px; cursor:pointer; border-bottom:2px solid transparent; font-weight:600; color:var(--muted); }
+    .tab.active { color:var(--accent); border-bottom-color:var(--accent); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🌐 HTTP Request Builder</h1>
+    <p class="subtitle">Build and test HTTP requests with full control over methods, headers, and body</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Request Configuration</h2>
+
+      <label>Method</label>
+      <div class="method-grid">
+        <div class="method-btn active" onclick="setMethod('GET')">GET</div>
+        <div class="method-btn" onclick="setMethod('POST')">POST</div>
+        <div class="method-btn" onclick="setMethod('PUT')">PUT</div>
+        <div class="method-btn" onclick="setMethod('DELETE')">DELETE</div>
+        <div class="method-btn" onclick="setMethod('PATCH')">PATCH</div>
+        <div class="method-btn" onclick="setMethod('HEAD')">HEAD</div>
+        <div class="method-btn" onclick="setMethod('OPTIONS')">OPTIONS</div>
+        <div class="method-btn" onclick="setMethod('TRACE')">TRACE</div>
+      </div>
+
+      <label for="url">URL</label>
+      <input id="url" type="text" placeholder="https://api.example.com/users" value="https://jsonplaceholder.typicode.com/posts/1" />
+
+      <label>Query Parameters</label>
+      <div id="paramsList"></div>
+      <button class="add-btn secondary" onclick="addParam()">+ Add Parameter</button>
+
+      <label>Headers</label>
+      <div id="headersList"></div>
+      <button class="add-btn secondary" onclick="addHeader()">+ Add Header</button>
+    </section>
+
+    <section class="card">
+      <div class="tabs">
+        <div class="tab active" onclick="switchBodyTab('none')">None</div>
+        <div class="tab" onclick="switchBodyTab('json')">JSON</div>
+        <div class="tab" onclick="switchBodyTab('form')">Form Data</div>
+        <div class="tab" onclick="switchBodyTab('raw')">Raw</div>
+      </div>
+
+      <div id="bodyNone">
+        <p style="color:var(--muted);">No request body</p>
+      </div>
+
+      <div id="bodyJson" style="display:none;">
+        <label for="jsonBody">JSON Body</label>
+        <textarea id="jsonBody" placeholder='{\n  "key": "value"\n}'></textarea>
+        <button class="secondary" onclick="formatJSON()">Format JSON</button>
+      </div>
+
+      <div id="bodyForm" style="display:none;">
+        <label>Form Fields</label>
+        <div id="formFields"></div>
+        <button class="add-btn secondary" onclick="addFormField()">+ Add Field</button>
+      </div>
+
+      <div id="bodyRaw" style="display:none;">
+        <label for="rawBody">Raw Body</label>
+        <textarea id="rawBody" placeholder="Raw request body..."></textarea>
+      </div>
+
+      <button onclick="buildRequest()" style="margin-top:20px;">Build Request</button>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Generated Request</h2>
+      <div class="tabs">
+        <div class="tab active" onclick="switchOutputTab('curl')">cURL</div>
+        <div class="tab" onclick="switchOutputTab('fetch')">JavaScript Fetch</div>
+        <div class="tab" onclick="switchOutputTab('python')">Python Requests</div>
+        <div class="tab" onclick="switchOutputTab('raw')">Raw HTTP</div>
+      </div>
+      <pre id="output"># Build a request to see the generated code</pre>
+      <button class="secondary" onclick="copyOutput()">📋 Copy to Clipboard</button>
+    </section>
+  </main>
+
+  <script>
+    let config = {
+      method: 'GET',
+      url: 'https://jsonplaceholder.typicode.com/posts/1',
+      params: [],
+      headers: [],
+      bodyType: 'none',
+      body: ''
+    };
+
+    let currentOutputTab = 'curl';
+
+    function setMethod(method) {
+      config.method = method;
+      document.querySelectorAll('.method-btn').forEach(btn => {
+        btn.classList.toggle('active', btn.textContent === method);
+      });
+
+      // Show/hide body tabs for GET/HEAD/DELETE
+      const noBodyMethods = ['GET', 'HEAD', 'DELETE', 'OPTIONS', 'TRACE'];
+      if (noBodyMethods.includes(method) && config.bodyType !== 'none') {
+        switchBodyTab('none');
+      }
+    }
+
+    function addParam() {
+      const id = Date.now();
+      config.params.push({ id, key: '', value: '' });
+      renderParams();
+    }
+
+    function removeParam(id) {
+      config.params = config.params.filter(p => p.id !== id);
+      renderParams();
+    }
+
+    function renderParams() {
+      if (config.params.length === 0) {
+        document.getElementById('paramsList').innerHTML = '<p style="color:var(--muted);font-size:13px;">No parameters</p>';
+        return;
+      }
+      document.getElementById('paramsList').innerHTML = config.params.map(p =>
+        `<div class="param-item">
+          <input placeholder="key" value="${p.key}" onchange="updateParam(${p.id}, 'key', this.value)" />
+          <input placeholder="value" value="${p.value}" onchange="updateParam(${p.id}, 'value', this.value)" />
+          <button onclick="removeParam(${p.id})">✕</button>
+        </div>`
+      ).join('');
+    }
+
+    function updateParam(id, field, value) {
+      const param = config.params.find(p => p.id === id);
+      if (param) param[field] = value;
+    }
+
+    function addHeader() {
+      const id = Date.now();
+      config.headers.push({ id, key: '', value: '' });
+      renderHeaders();
+    }
+
+    function removeHeader(id) {
+      config.headers = config.headers.filter(h => h.id !== id);
+      renderHeaders();
+    }
+
+    function renderHeaders() {
+      if (config.headers.length === 0) {
+        document.getElementById('headersList').innerHTML = '<p style="color:var(--muted);font-size:13px;">No custom headers</p>';
+        return;
+      }
+      document.getElementById('headersList').innerHTML = config.headers.map(h =>
+        `<div class="header-item">
+          <input placeholder="Header-Name" value="${h.key}" onchange="updateHeader(${h.id}, 'key', this.value)" />
+          <input placeholder="value" value="${h.value}" onchange="updateHeader(${h.id}, 'value', this.value)" />
+          <button onclick="removeHeader(${h.id})">✕</button>
+        </div>`
+      ).join('');
+    }
+
+    function updateHeader(id, field, value) {
+      const header = config.headers.find(h => h.id === id);
+      if (header) header[field] = value;
+    }
+
+    function addFormField() {
+      const id = Date.now();
+      if (!config.formFields) config.formFields = [];
+      config.formFields.push({ id, key: '', value: '' });
+      renderFormFields();
+    }
+
+    function removeFormField(id) {
+      config.formFields = config.formFields.filter(f => f.id !== id);
+      renderFormFields();
+    }
+
+    function renderFormFields() {
+      if (!config.formFields || config.formFields.length === 0) {
+        document.getElementById('formFields').innerHTML = '<p style="color:var(--muted);font-size:13px;">No form fields</p>';
+        return;
+      }
+      document.getElementById('formFields').innerHTML = config.formFields.map(f =>
+        `<div class="header-item">
+          <input placeholder="field name" value="${f.key}" onchange="updateFormField(${f.id}, 'key', this.value)" />
+          <input placeholder="value" value="${f.value}" onchange="updateFormField(${f.id}, 'value', this.value)" />
+          <button onclick="removeFormField(${f.id})">✕</button>
+        </div>`
+      ).join('');
+    }
+
+    function updateFormField(id, field, value) {
+      const formField = config.formFields.find(f => f.id === id);
+      if (formField) formField[field] = value;
+    }
+
+    function switchBodyTab(type) {
+      config.bodyType = type;
+      document.querySelectorAll('#bodyNone, #bodyJson, #bodyForm, #bodyRaw').forEach(el => el.style.display = 'none');
+      document.getElementById(`body${type.charAt(0).toUpperCase() + type.slice(1)}`).style.display = 'block';
+
+      document.querySelectorAll('.tabs .tab').forEach(tab => {
+        tab.classList.toggle('active', tab.textContent.toLowerCase() === type);
+      });
+    }
+
+    function switchOutputTab(tab) {
+      currentOutputTab = tab;
+      document.querySelectorAll('.card:last-child .tabs .tab').forEach(t => {
+        t.classList.toggle('active', t.textContent.toLowerCase().includes(tab));
+      });
+      buildRequest();
+    }
+
+    function formatJSON() {
+      try {
+        const json = JSON.parse(document.getElementById('jsonBody').value);
+        document.getElementById('jsonBody').value = JSON.stringify(json, null, 2);
+      } catch (e) {
+        alert('Invalid JSON: ' + e.message);
+      }
+    }
+
+    function buildRequest() {
+      config.url = document.getElementById('url').value;
+
+      let url = config.url;
+      if (config.params.length > 0) {
+        const params = config.params.filter(p => p.key).map(p => `${encodeURIComponent(p.key)}=${encodeURIComponent(p.value)}`).join('&');
+        url += (url.includes('?') ? '&' : '?') + params;
+      }
+
+      let body = '';
+      if (config.bodyType === 'json') {
+        body = document.getElementById('jsonBody').value;
+      } else if (config.bodyType === 'form') {
+        const formData = config.formFields?.filter(f => f.key).map(f => `${encodeURIComponent(f.key)}=${encodeURIComponent(f.value)}`).join('&');
+        body = formData;
+      } else if (config.bodyType === 'raw') {
+        body = document.getElementById('rawBody').value;
+      }
+
+      let output = '';
+
+      if (currentOutputTab === 'curl') {
+        output = `curl -X ${config.method} '${url}'`;
+        config.headers.filter(h => h.key).forEach(h => {
+          output += ` \\\n  -H '${h.key}: ${h.value}'`;
+        });
+        if (config.bodyType === 'json' && body) {
+          output += ` \\\n  -H 'Content-Type: application/json'`;
+          output += ` \\\n  -d '${body.replace(/'/g, "\\'")}'`;
+        } else if (config.bodyType === 'form' && body) {
+          output += ` \\\n  -H 'Content-Type: application/x-www-form-urlencoded'`;
+          output += ` \\\n  -d '${body}'`;
+        } else if (config.bodyType === 'raw' && body) {
+          output += ` \\\n  -d '${body.replace(/'/g, "\\'")}'`;
+        }
+      } else if (currentOutputTab === 'fetch') {
+        output = `fetch('${url}', {\n  method: '${config.method}'`;
+        if (config.headers.length > 0 || (config.bodyType === 'json' && body)) {
+          output += `,\n  headers: {\n`;
+          if (config.bodyType === 'json' && body) {
+            output += `    'Content-Type': 'application/json'`;
+            if (config.headers.filter(h => h.key).length > 0) output += ',';
+            output += '\n';
+          }
+          config.headers.filter(h => h.key).forEach((h, i) => {
+            output += `    '${h.key}': '${h.value}'`;
+            if (i < config.headers.filter(h => h.key).length - 1) output += ',';
+            output += '\n';
+          });
+          output += `  }`;
+        }
+        if (body) {
+          const bodyContent = config.bodyType === 'json' ? body : `'${body}'`;
+          output += `,\n  body: ${bodyContent}`;
+        }
+        output += `\n})\n  .then(res => res.json())\n  .then(data => console.log(data))\n  .catch(err => console.error(err));`;
+      } else if (currentOutputTab === 'python') {
+        output = `import requests\n\n`;
+        if (config.headers.filter(h => h.key).length > 0) {
+          output += `headers = {\n`;
+          config.headers.filter(h => h.key).forEach(h => {
+            output += `    '${h.key}': '${h.value}',\n`;
+          });
+          output += `}\n\n`;
+        }
+        if (body) {
+          if (config.bodyType === 'json') {
+            output += `data = ${body}\n\n`;
+          } else {
+            output += `data = '${body}'\n\n`;
+          }
+        }
+        output += `response = requests.${config.method.toLowerCase()}(\n    '${url}'`;
+        if (config.headers.filter(h => h.key).length > 0) {
+          output += `,\n    headers=headers`;
+        }
+        if (body) {
+          output += `,\n    ${config.bodyType === 'json' ? 'json' : 'data'}=data`;
+        }
+        output += `\n)\n\nprint(response.json())`;
+      } else if (currentOutputTab === 'raw') {
+        const urlObj = new URL(url);
+        output = `${config.method} ${urlObj.pathname}${urlObj.search} HTTP/1.1\n`;
+        output += `Host: ${urlObj.host}\n`;
+        config.headers.filter(h => h.key).forEach(h => {
+          output += `${h.key}: ${h.value}\n`;
+        });
+        if (config.bodyType === 'json' && body) {
+          output += `Content-Type: application/json\n`;
+          output += `Content-Length: ${body.length}\n`;
+        } else if (config.bodyType === 'form' && body) {
+          output += `Content-Type: application/x-www-form-urlencoded\n`;
+          output += `Content-Length: ${body.length}\n`;
+        }
+        output += `\n`;
+        if (body) {
+          output += body;
+        }
+      }
+
+      document.getElementById('output').textContent = output;
+    }
+
+    function copyOutput() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    renderParams();
+    renderHeaders();
+    buildRequest();
+  </script>
+</body>
+</html>
diff --git a/tools/kubernetes-psp-builder/docs/README.md b/tools/kubernetes-psp-builder/docs/README.md
new file mode 100644
index 0000000..acc8828
--- /dev/null
+++ b/tools/kubernetes-psp-builder/docs/README.md
@@ -0,0 +1,34 @@
+# Kubernetes PSP Builder
+
+Build Pod Security Policies with security best practices and YAML generation.
+
+## Features
+
+- Visual PSP configuration builder
+- Security presets (Baseline, Restricted, Privileged, Custom)
+- Configure security options:
+  - Privileged containers
+  - Host network/PID/IPC access
+  - Run as user/group settings
+  - Volume types
+  - Capabilities
+  - SELinux/AppArmor/Seccomp profiles
+- Real-time YAML generation
+- Export to file or clipboard
+- Security best practices guidance
+
+## Usage
+
+1. Name your policy
+2. Select a security preset or configure custom settings
+3. Toggle security options
+4. Configure user/group requirements
+5. Set allowed volume types
+6. Review generated YAML
+7. Download or copy to clipboard
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/kubernetes-psp-builder/docs/screenshot.png b/tools/kubernetes-psp-builder/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/kubernetes-psp-builder/docs/screenshot.png differ
diff --git a/tools/kubernetes-psp-builder/index.html b/tools/kubernetes-psp-builder/index.html
new file mode 100644
index 0000000..2c9697c
--- /dev/null
+++ b/tools/kubernetes-psp-builder/index.html
@@ -0,0 +1,280 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Kubernetes PSP Builder</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a0f1a; --panel:#10172a; --text:#e5e7eb; --muted:#94a3b8; --accent:#3b82f6; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 25% 20%,#1a2f4f,#0a0f1a 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1600px; margin:0 auto; display:grid; grid-template-columns:repeat(auto-fit,minmax(450px,1fr)); gap:20px; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, select, textarea { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0a0f1a; color:var(--text); font-size:14px; font-family:inherit; }
+    textarea { min-height:100px; resize:vertical; }
+    .toggle { display:flex; align-items:center; gap:8px; margin:12px 0; }
+    input[type="checkbox"] { width:20px; height:20px; cursor:pointer; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#3b82f6,#2563eb); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(59,130,246,0.3); }
+    button:hover { transform:translateY(-1px); }
+    button.secondary { background:linear-gradient(135deg,#8b5cf6,#7c3aed); box-shadow:0 8px 24px rgba(139,92,246,0.3); }
+    pre { background:#0a0f1a; border:1px solid #1f2937; border-radius:10px; padding:16px; min-height:300px; max-height:600px; overflow-y:auto; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; white-space:pre-wrap; }
+    .preset-btn { padding:10px; border:1px solid #1f2937; border-radius:8px; background:rgba(59,130,246,0.08); cursor:pointer; text-align:center; transition:all 0.2s; margin:4px; }
+    .preset-btn:hover { background:rgba(59,130,246,0.15); border-color:var(--accent); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>☸️ Kubernetes PSP Builder</h1>
+    <p class="subtitle">Build Pod Security Policies with security best practices and YAML generation</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Policy Configuration</h2>
+
+      <label for="policyName">Policy Name</label>
+      <input id="policyName" type="text" placeholder="restrictive-policy" value="restrictive-policy" />
+
+      <label>Security Presets</label>
+      <div style="display:grid;grid-template-columns:repeat(2,1fr);gap:8px;">
+        <div class="preset-btn" onclick="loadPreset('baseline')">Baseline</div>
+        <div class="preset-btn" onclick="loadPreset('restricted')">Restricted</div>
+        <div class="preset-btn" onclick="loadPreset('privileged')">Privileged</div>
+        <div class="preset-btn" onclick="loadPreset('custom')">Custom</div>
+      </div>
+
+      <div class="toggle">
+        <input type="checkbox" id="privileged" onchange="generate()" />
+        <label for="privileged" style="margin:0;">Allow Privileged Containers</label>
+      </div>
+
+      <div class="toggle">
+        <input type="checkbox" id="hostNetwork" onchange="generate()" />
+        <label for="hostNetwork" style="margin:0;">Allow Host Network</label>
+      </div>
+
+      <div class="toggle">
+        <input type="checkbox" id="hostPID" onchange="generate()" />
+        <label for="hostPID" style="margin:0;">Allow Host PID</label>
+      </div>
+
+      <div class="toggle">
+        <input type="checkbox" id="hostIPC" onchange="generate()" />
+        <label for="hostIPC" style="margin:0;">Allow Host IPC</label>
+      </div>
+
+      <label for="runAsUser">Run As User</label>
+      <select id="runAsUser" onchange="generate()">
+        <option value="MustRunAsNonRoot">Must Run As Non-Root</option>
+        <option value="RunAsAny">Run As Any</option>
+        <option value="MustRunAs">Must Run As (specific UID)</option>
+      </select>
+
+      <label for="fsGroup">FS Group</label>
+      <select id="fsGroup" onchange="generate()">
+        <option value="MustRunAs">Must Run As (specific GID)</option>
+        <option value="RunAsAny">Run As Any</option>
+      </select>
+
+      <label for="volumes">Allowed Volume Types (comma-separated)</label>
+      <input id="volumes" type="text" placeholder="configMap,secret,emptyDir" value="configMap,secret,emptyDir,persistentVolumeClaim" onchange="generate()" />
+    </section>
+
+    <section class="card">
+      <h2>Security Context</h2>
+
+      <div class="toggle">
+        <input type="checkbox" id="readOnlyRoot" checked onchange="generate()" />
+        <label for="readOnlyRoot" style="margin:0;">Read-Only Root Filesystem</label>
+      </div>
+
+      <div class="toggle">
+        <input type="checkbox" id="allowPrivEscalation" onchange="generate()" />
+        <label for="allowPrivEscalation" style="margin:0;">Allow Privilege Escalation</label>
+      </div>
+
+      <label for="capabilities">Required Dropped Capabilities</label>
+      <input id="capabilities" type="text" placeholder="ALL" value="ALL" onchange="generate()" />
+
+      <label for="seLinux">SE Linux</label>
+      <select id="seLinux" onchange="generate()">
+        <option value="RunAsAny">Run As Any</option>
+        <option value="MustRunAs">Must Run As</option>
+      </select>
+
+      <label for="seccomp">Seccomp Profile</label>
+      <select id="seccomp" onchange="generate()">
+        <option value="RuntimeDefault">Runtime Default</option>
+        <option value="Localhost">Localhost</option>
+        <option value="Unconfined">Unconfined</option>
+      </select>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Generated Pod Security Policy YAML</h2>
+      <pre id="output"># Configure your policy and see the YAML here</pre>
+      <div style="display:grid;grid-template-columns:1fr 1fr;gap:10px;">
+        <button onclick="copyOutput()">📋 Copy YAML</button>
+        <button class="secondary" onclick="downloadOutput()">💾 Download Policy</button>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    const presets = {
+      baseline: {
+        privileged: false,
+        hostNetwork: false,
+        hostPID: false,
+        hostIPC: false,
+        runAsUser: 'RunAsAny',
+        fsGroup: 'RunAsAny',
+        volumes: 'configMap,secret,emptyDir,persistentVolumeClaim',
+        readOnlyRoot: false,
+        allowPrivEscalation: true,
+        capabilities: 'NET_RAW',
+        seLinux: 'RunAsAny',
+        seccomp: 'RuntimeDefault'
+      },
+      restricted: {
+        privileged: false,
+        hostNetwork: false,
+        hostPID: false,
+        hostIPC: false,
+        runAsUser: 'MustRunAsNonRoot',
+        fsGroup: 'MustRunAs',
+        volumes: 'configMap,secret,emptyDir,persistentVolumeClaim',
+        readOnlyRoot: true,
+        allowPrivEscalation: false,
+        capabilities: 'ALL',
+        seLinux: 'RunAsAny',
+        seccomp: 'RuntimeDefault'
+      },
+      privileged: {
+        privileged: true,
+        hostNetwork: true,
+        hostPID: true,
+        hostIPC: true,
+        runAsUser: 'RunAsAny',
+        fsGroup: 'RunAsAny',
+        volumes: '*',
+        readOnlyRoot: false,
+        allowPrivEscalation: true,
+        capabilities: '',
+        seLinux: 'RunAsAny',
+        seccomp: 'Unconfined'
+      }
+    };
+
+    function loadPreset(type) {
+      if (type === 'custom') {
+        generate();
+        return;
+      }
+
+      const preset = presets[type];
+      document.getElementById('privileged').checked = preset.privileged;
+      document.getElementById('hostNetwork').checked = preset.hostNetwork;
+      document.getElementById('hostPID').checked = preset.hostPID;
+      document.getElementById('hostIPC').checked = preset.hostIPC;
+      document.getElementById('runAsUser').value = preset.runAsUser;
+      document.getElementById('fsGroup').value = preset.fsGroup;
+      document.getElementById('volumes').value = preset.volumes;
+      document.getElementById('readOnlyRoot').checked = preset.readOnlyRoot;
+      document.getElementById('allowPrivEscalation').checked = preset.allowPrivEscalation;
+      document.getElementById('capabilities').value = preset.capabilities;
+      document.getElementById('seLinux').value = preset.seLinux;
+      document.getElementById('seccomp').value = preset.seccomp;
+
+      generate();
+    }
+
+    function generate() {
+      const name = document.getElementById('policyName').value || 'restrictive-policy';
+      const privileged = document.getElementById('privileged').checked;
+      const hostNetwork = document.getElementById('hostNetwork').checked;
+      const hostPID = document.getElementById('hostPID').checked;
+      const hostIPC = document.getElementById('hostIPC').checked;
+      const runAsUser = document.getElementById('runAsUser').value;
+      const fsGroup = document.getElementById('fsGroup').value;
+      const volumes = document.getElementById('volumes').value;
+      const readOnlyRoot = document.getElementById('readOnlyRoot').checked;
+      const allowPrivEscalation = document.getElementById('allowPrivEscalation').checked;
+      const capabilities = document.getElementById('capabilities').value;
+      const seLinux = document.getElementById('seLinux').value;
+      const seccomp = document.getElementById('seccomp').value;
+
+      let yaml = `apiVersion: policy/v1beta1\nkind: PodSecurityPolicy\nmetadata:\n  name: ${name}\n  annotations:\n    seccomp.security.alpha.kubernetes.io/allowedProfileNames: '${seccomp}'\nspec:\n`;
+
+      yaml += `  privileged: ${privileged}\n`;
+      yaml += `  hostNetwork: ${hostNetwork}\n`;
+      yaml += `  hostPID: ${hostPID}\n`;
+      yaml += `  hostIPC: ${hostIPC}\n`;
+
+      yaml += `  runAsUser:\n    rule: ${runAsUser}\n`;
+      if (runAsUser === 'MustRunAs') {
+        yaml += `    ranges:\n      - min: 1000\n        max: 65535\n`;
+      }
+
+      yaml += `  fsGroup:\n    rule: ${fsGroup}\n`;
+      if (fsGroup === 'MustRunAs') {
+        yaml += `    ranges:\n      - min: 1000\n        max: 65535\n`;
+      }
+
+      yaml += `  seLinux:\n    rule: ${seLinux}\n`;
+
+      yaml += `  supplementalGroups:\n    rule: RunAsAny\n`;
+
+      const volumeList = volumes === '*' ? ['*'] : volumes.split(',').map(v => v.trim());
+      yaml += `  volumes:\n`;
+      volumeList.forEach(v => {
+        yaml += `    - ${v}\n`;
+      });
+
+      yaml += `  readOnlyRootFilesystem: ${readOnlyRoot}\n`;
+      yaml += `  allowPrivilegeEscalation: ${allowPrivEscalation}\n`;
+
+      if (capabilities) {
+        const caps = capabilities.split(',').map(c => c.trim());
+        yaml += `  requiredDropCapabilities:\n`;
+        caps.forEach(c => {
+          yaml += `    - ${c}\n`;
+        });
+      }
+
+      yaml += `\n# RBAC Configuration (apply separately)\n---\n`;
+      yaml += `apiVersion: rbac.authorization.k8s.io/v1\nkind: ClusterRole\nmetadata:\n  name: ${name}-role\nrules:\n`;
+      yaml += `  - apiGroups: ['policy']\n    resources: ['podsecuritypolicies']\n    verbs: ['use']\n    resourceNames:\n      - ${name}\n`;
+
+      yaml += `\n---\n`;
+      yaml += `apiVersion: rbac.authorization.k8s.io/v1\nkind: ClusterRoleBinding\nmetadata:\n  name: ${name}-binding\nroleRef:\n  apiGroup: rbac.authorization.k8s.io\n  kind: ClusterRole\n  name: ${name}-role\nsubjects:\n  - kind: ServiceAccount\n    name: default\n    namespace: default\n`;
+
+      document.getElementById('output').textContent = yaml;
+    }
+
+    function copyOutput() {
+      const text = document.getElementById('output').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    function downloadOutput() {
+      const text = document.getElementById('output').textContent;
+      const name = document.getElementById('policyName').value || 'restrictive-policy';
+      const blob = new Blob([text], { type: 'text/yaml' });
+      const url = URL.createObjectURL(blob);
+      const a = document.createElement('a');
+      a.href = url;
+      a.download = `${name}.yaml`;
+      a.click();
+      URL.revokeObjectURL(url);
+    }
+
+    loadPreset('restricted');
+  </script>
+</body>
+</html>
diff --git a/tools/password-entropy-calculator/docs/README.md b/tools/password-entropy-calculator/docs/README.md
new file mode 100644
index 0000000..abc388e
--- /dev/null
+++ b/tools/password-entropy-calculator/docs/README.md
@@ -0,0 +1,27 @@
+# Password Entropy Calculator
+
+Analyze password strength with entropy calculation, pattern detection, and cracking time estimates.
+
+## Features
+
+- Real-time entropy calculation
+- Password strength scoring
+- Cracking time estimates
+- Pattern detection (common patterns, sequences, repetitions)
+- Character composition analysis
+- Secure password generator with customizable options
+- Visual strength meter
+
+## Usage
+
+1. Enter a password to analyze
+2. View entropy score and strength rating
+3. Review detected patterns and statistics
+4. Generate secure passwords with custom requirements
+5. Use recommendations to improve password strength
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/password-entropy-calculator/docs/screenshot.png b/tools/password-entropy-calculator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/password-entropy-calculator/docs/screenshot.png differ
diff --git a/tools/password-entropy-calculator/index.html b/tools/password-entropy-calculator/index.html
new file mode 100644
index 0000000..47deecb
--- /dev/null
+++ b/tools/password-entropy-calculator/index.html
@@ -0,0 +1,293 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Password Entropy Calculator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#1a0a2e; --panel:#2a1a4e; --text:#e5e7eb; --muted:#94a3b8; --accent:#a855f7; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 20% 30%,#3d2a5f,#1a0a2e 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1400px; margin:0 auto; display:grid; grid-template-columns:repeat(auto-fit,minmax(450px,1fr)); gap:20px; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input[type="text"], input[type="password"] { width:100%; padding:14px; border-radius:10px; border:1px solid #1f2937; background:#1a0a2e; color:var(--text); font-size:16px; font-family:'Fira Code',monospace; }
+    .toggle { display:flex; align-items:center; gap:8px; margin:12px 0; }
+    input[type="checkbox"] { width:20px; height:20px; cursor:pointer; }
+    .strength { text-align:center; padding:24px; border-radius:12px; margin:16px 0; }
+    .strength-score { font-size:48px; font-weight:800; margin-bottom:12px; }
+    .strength-label { font-size:20px; font-weight:700; }
+    .meter { height:12px; background:#1a0a2e; border-radius:6px; overflow:hidden; margin:20px 0; }
+    .meter-fill { height:100%; transition:all 0.3s; border-radius:6px; }
+    .stat { display:flex; justify-content:space-between; padding:10px 0; border-bottom:1px solid #1f2937; }
+    .stat:last-child { border-bottom:none; }
+    .stat-label { color:var(--muted); font-weight:600; }
+    .stat-value { font-family:'Fira Code',monospace; font-weight:700; }
+    .tip { background:#1a0a2e; border:1px solid #1f2937; border-radius:8px; padding:14px; margin:12px 0; font-size:14px; line-height:1.6; }
+    .generator { display:grid; grid-template-columns:1fr auto; gap:10px; align-items:end; }
+    button { padding:13px 24px; border:none; border-radius:10px; background:linear-gradient(135deg,#a855f7,#9333ea); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(168,85,247,0.3); }
+    button:hover { transform:translateY(-1px); }
+    .pattern { background:#1a0a2e; border:1px solid #1f2937; border-radius:8px; padding:12px; margin:8px 0; }
+    .pattern-name { font-weight:700; color:var(--accent); margin-bottom:6px; }
+    .pattern-example { font-family:'Fira Code',monospace; font-size:13px; color:var(--muted); }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🔐 Password Entropy Calculator</h1>
+    <p class="subtitle">Analyze password strength with entropy calculation, pattern detection, and cracking time estimates</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>Password Analysis</h2>
+
+      <label for="password">Password</label>
+      <input id="password" type="password" placeholder="Enter password to analyze" oninput="analyze()" />
+
+      <div class="toggle">
+        <input type="checkbox" id="showPassword" onchange="togglePassword()" />
+        <label for="showPassword" style="margin:0;cursor:pointer;">Show password</label>
+      </div>
+
+      <div class="strength" id="strength">
+        <div class="strength-score">-</div>
+        <div class="strength-label">Enter a password</div>
+      </div>
+
+      <div class="meter">
+        <div class="meter-fill" id="meter"></div>
+      </div>
+    </section>
+
+    <section class="card">
+      <h2>Statistics</h2>
+      <div id="stats"></div>
+    </section>
+
+    <section class="card">
+      <h2>Password Generator</h2>
+
+      <div class="toggle">
+        <input type="checkbox" id="genUppercase" checked />
+        <label for="genUppercase" style="margin:0;">Uppercase (A-Z)</label>
+      </div>
+      <div class="toggle">
+        <input type="checkbox" id="genLowercase" checked />
+        <label for="genLowercase" style="margin:0;">Lowercase (a-z)</label>
+      </div>
+      <div class="toggle">
+        <input type="checkbox" id="genNumbers" checked />
+        <label for="genNumbers" style="margin:0;">Numbers (0-9)</label>
+      </div>
+      <div class="toggle">
+        <input type="checkbox" id="genSymbols" checked />
+        <label for="genSymbols" style="margin:0;">Symbols (!@#$%...)</label>
+      </div>
+
+      <label for="genLength">Length: <span id="lengthValue">16</span></label>
+      <input type="range" id="genLength" min="8" max="64" value="16" style="width:100%;" oninput="document.getElementById('lengthValue').textContent = this.value" />
+
+      <button onclick="generatePassword()" style="width:100%;margin-top:14px;">Generate Secure Password</button>
+    </section>
+
+    <section class="card">
+      <h2>Common Patterns Detected</h2>
+      <div id="patterns"></div>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Best Practices</h2>
+      <div class="tip">
+        <strong>✓ Do:</strong>
+        <ul style="margin:8px 0 0;padding-left:20px;">
+          <li>Use at least 12 characters (16+ recommended)</li>
+          <li>Include uppercase, lowercase, numbers, and symbols</li>
+          <li>Use unique passwords for each account</li>
+          <li>Consider using a password manager</li>
+          <li>Use passphrases (e.g., "correct-horse-battery-staple")</li>
+        </ul>
+      </div>
+      <div class="tip">
+        <strong>✗ Don't:</strong>
+        <ul style="margin:8px 0 0;padding-left:20px;">
+          <li>Use personal information (names, birthdates, etc.)</li>
+          <li>Use common words or patterns (password123, qwerty, etc.)</li>
+          <li>Reuse passwords across accounts</li>
+          <li>Share passwords or write them down insecurely</li>
+          <li>Use simple substitutions (P@ssw0rd)</li>
+        </ul>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    function togglePassword() {
+      const input = document.getElementById('password');
+      input.type = document.getElementById('showPassword').checked ? 'text' : 'password';
+    }
+
+    function analyze() {
+      const password = document.getElementById('password').value;
+
+      if (!password) {
+        document.getElementById('strength').innerHTML = `
+          <div class="strength-score">-</div>
+          <div class="strength-label">Enter a password</div>
+        `;
+        document.getElementById('meter').style.width = '0%';
+        document.getElementById('stats').innerHTML = '<p style="color:var(--muted);">No password entered</p>';
+        document.getElementById('patterns').innerHTML = '<p style="color:var(--muted);">No patterns detected</p>';
+        return;
+      }
+
+      // Calculate entropy
+      let poolSize = 0;
+      if (/[a-z]/.test(password)) poolSize += 26;
+      if (/[A-Z]/.test(password)) poolSize += 26;
+      if (/[0-9]/.test(password)) poolSize += 10;
+      if (/[^a-zA-Z0-9]/.test(password)) poolSize += 32;
+
+      const entropy = Math.log2(Math.pow(poolSize, password.length));
+      const score = Math.min(100, (entropy / 80) * 100);
+
+      // Detect patterns
+      const patterns = [];
+      if (/^[a-z]+$/.test(password)) patterns.push({ name: 'All lowercase', risk: 'Weak - very limited character space' });
+      if (/^[A-Z]+$/.test(password)) patterns.push({ name: 'All uppercase', risk: 'Weak - very limited character space' });
+      if (/^[0-9]+$/.test(password)) patterns.push({ name: 'All numbers', risk: 'Weak - easily guessed with PIN cracking' });
+      if (/123|234|345|456|567|678|789|890/.test(password)) patterns.push({ name: 'Sequential numbers', risk: 'Common pattern - easily guessed' });
+      if (/abc|bcd|cde|def|efg|fgh|ghi|hij|ijk|jkl|klm|lmn|mno|nop|opq|pqr|qrs|rst|stu|tuv|uvw|vwx|wxy|xyz/i.test(password)) patterns.push({ name: 'Sequential letters', risk: 'Common pattern - easily guessed' });
+      if (/(.)\1{2,}/.test(password)) patterns.push({ name: 'Repeated characters', risk: 'Reduces effective entropy' });
+      if (/^[a-z]+[0-9]+$/i.test(password)) patterns.push({ name: 'Letters followed by numbers', risk: 'Very common pattern (e.g., password123)' });
+      if (password.length < 8) patterns.push({ name: 'Too short', risk: 'Vulnerable to brute force attacks' });
+
+      const commonWords = ['password', 'admin', 'letmein', 'welcome', 'monkey', 'dragon', 'master', 'sunshine', 'princess', 'qwerty', 'abc123'];
+      commonWords.forEach(word => {
+        if (password.toLowerCase().includes(word)) {
+          patterns.push({ name: `Contains "${word}"`, risk: 'Common word in dictionary attacks' });
+        }
+      });
+
+      // Cracking time estimates
+      const combinations = Math.pow(poolSize, password.length);
+      const guessesPerSecond = 1e10; // 10 billion guesses/second (modern GPU)
+      const seconds = combinations / (2 * guessesPerSecond);
+
+      let crackTime = '';
+      if (seconds < 1) crackTime = 'Instant';
+      else if (seconds < 60) crackTime = `${Math.round(seconds)} seconds`;
+      else if (seconds < 3600) crackTime = `${Math.round(seconds / 60)} minutes`;
+      else if (seconds < 86400) crackTime = `${Math.round(seconds / 3600)} hours`;
+      else if (seconds < 31536000) crackTime = `${Math.round(seconds / 86400)} days`;
+      else if (seconds < 315360000) crackTime = `${Math.round(seconds / 31536000)} years`;
+      else if (seconds < 31536000000) crackTime = `${Math.round(seconds / 31536000)} years`;
+      else crackTime = `${(seconds / 31536000).toExponential(2)} years`;
+
+      // Strength assessment
+      let strengthClass = '';
+      let strengthLabel = '';
+      let color = '';
+
+      if (score < 30) {
+        strengthClass = 'weak';
+        strengthLabel = 'Very Weak';
+        color = '#ef4444';
+      } else if (score < 50) {
+        strengthClass = 'fair';
+        strengthLabel = 'Weak';
+        color = '#f97316';
+      } else if (score < 70) {
+        strengthClass = 'good';
+        strengthLabel = 'Fair';
+        color = '#f59e0b';
+      } else if (score < 85) {
+        strengthClass = 'strong';
+        strengthLabel = 'Good';
+        color = '#22c55e';
+      } else {
+        strengthClass = 'verystrong';
+        strengthLabel = 'Strong';
+        color = '#10b981';
+      }
+
+      document.getElementById('strength').innerHTML = `
+        <div class="strength-score" style="color:${color};">${Math.round(entropy)}</div>
+        <div class="strength-label" style="color:${color};">bits of entropy · ${strengthLabel}</div>
+      `;
+
+      const meter = document.getElementById('meter');
+      meter.style.width = `${score}%`;
+      meter.style.background = color;
+
+      document.getElementById('stats').innerHTML = `
+        <div class="stat">
+          <span class="stat-label">Length</span>
+          <span class="stat-value">${password.length} characters</span>
+        </div>
+        <div class="stat">
+          <span class="stat-label">Character Pool</span>
+          <span class="stat-value">${poolSize} unique characters</span>
+        </div>
+        <div class="stat">
+          <span class="stat-label">Entropy</span>
+          <span class="stat-value">${entropy.toFixed(2)} bits</span>
+        </div>
+        <div class="stat">
+          <span class="stat-label">Possible Combinations</span>
+          <span class="stat-value">${combinations.toExponential(2)}</span>
+        </div>
+        <div class="stat">
+          <span class="stat-label">Time to Crack (GPU)</span>
+          <span class="stat-value" style="color:${color};">${crackTime}</span>
+        </div>
+      `;
+
+      if (patterns.length === 0) {
+        document.getElementById('patterns').innerHTML = '<p style="color:#22c55e;">✓ No obvious patterns detected</p>';
+      } else {
+        document.getElementById('patterns').innerHTML = patterns.map(p =>
+          `<div class="pattern">
+            <div class="pattern-name">⚠ ${p.name}</div>
+            <div class="pattern-example">${p.risk}</div>
+          </div>`
+        ).join('');
+      }
+    }
+
+    function generatePassword() {
+      const useUpper = document.getElementById('genUppercase').checked;
+      const useLower = document.getElementById('genLowercase').checked;
+      const useNumbers = document.getElementById('genNumbers').checked;
+      const useSymbols = document.getElementById('genSymbols').checked;
+      const length = parseInt(document.getElementById('genLength').value);
+
+      let charset = '';
+      if (useUpper) charset += 'ABCDEFGHIJKLMNOPQRSTUVWXYZ';
+      if (useLower) charset += 'abcdefghijklmnopqrstuvwxyz';
+      if (useNumbers) charset += '0123456789';
+      if (useSymbols) charset += '!@#$%^&*()_+-=[]{}|;:,.<>?';
+
+      if (charset.length === 0) {
+        alert('Select at least one character type');
+        return;
+      }
+
+      let password = '';
+      const array = new Uint32Array(length);
+      crypto.getRandomValues(array);
+
+      for (let i = 0; i < length; i++) {
+        password += charset[array[i] % charset.length];
+      }
+
+      document.getElementById('password').value = password;
+      analyze();
+    }
+  </script>
+</body>
+</html>
diff --git a/tools/snmp-oid-translator/docs/README.md b/tools/snmp-oid-translator/docs/README.md
new file mode 100644
index 0000000..9df7343
--- /dev/null
+++ b/tools/snmp-oid-translator/docs/README.md
@@ -0,0 +1,31 @@
+# SNMP OID Translator
+
+Translate SNMP Object Identifiers between numeric and descriptive formats with MIB database.
+
+## Features
+
+- Translate numeric OIDs to descriptive names
+- Translate descriptive names to numeric OIDs
+- Common SNMP OID reference library
+- MIB database included
+- Quick-select common OIDs:
+  - System information (sysDescr, sysUpTime, sysName)
+  - Interface data (ifNumber, ifDescr)
+  - Storage information (hrStorage)
+  - Network metrics
+- Detailed OID descriptions
+- Copy results
+
+## Usage
+
+1. Enter numeric OID (e.g., 1.3.6.1.2.1.1.1.0)
+2. Or enter descriptive name (e.g., sysDescr.0)
+3. Click "Translate OID"
+4. View translation and description
+5. Or click any common OID for quick lookup
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/snmp-oid-translator/docs/screenshot.png b/tools/snmp-oid-translator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/snmp-oid-translator/docs/screenshot.png differ
diff --git a/tools/snmp-oid-translator/index.html b/tools/snmp-oid-translator/index.html
new file mode 100644
index 0000000..85a935c
--- /dev/null
+++ b/tools/snmp-oid-translator/index.html
@@ -0,0 +1,222 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>SNMP OID Translator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#0a1420; --panel:#0f1a2f; --text:#e5e7eb; --muted:#94a3b8; --accent:#10b981; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 15% 30%,#1a3a3f,#0a1420 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1600px; margin:0 auto; display:grid; grid-template-columns:repeat(auto-fit,minmax(450px,1fr)); gap:20px; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#0a1420; color:var(--text); font-size:14px; font-family:'Fira Code',monospace; }
+    button { margin-top:14px; width:100%; padding:13px; border:none; border-radius:10px; background:linear-gradient(135deg,#10b981,#059669); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(16,185,129,0.3); }
+    button:hover { transform:translateY(-1px); }
+    .result { background:#0a1420; border:1px solid #1f2937; border-radius:10px; padding:16px; margin:12px 0; }
+    .oid-name { font-weight:700; color:var(--accent); font-size:18px; margin-bottom:8px; }
+    .oid-path { font-family:'Fira Code',monospace; font-size:13px; color:var(--muted); margin:4px 0; }
+    .oid-desc { color:var(--text); font-size:14px; line-height:1.6; margin:12px 0; }
+    .common-oid { background:rgba(16,185,129,0.08); border:1px solid #1f2937; border-radius:8px; padding:12px; margin:8px 0; cursor:pointer; transition:all 0.2s; }
+    .common-oid:hover { background:rgba(16,185,129,0.15); border-color:var(--accent); }
+    .common-oid-name { font-weight:600; color:var(--accent); }
+    .common-oid-num { font-family:'Fira Code',monospace; font-size:12px; color:var(--muted); margin-top:4px; }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🔢 SNMP OID Translator</h1>
+    <p class="subtitle">Translate SNMP Object Identifiers between numeric and descriptive formats with MIB database</p>
+  </header>
+
+  <main>
+    <section class="card">
+      <h2>OID Lookup</h2>
+
+      <label for="oid">Enter OID (numeric or name)</label>
+      <input id="oid" type="text" placeholder="e.g., 1.3.6.1.2.1.1.1.0 or sysDescr.0" value="1.3.6.1.2.1.1.1.0" />
+
+      <button onclick="lookup()">Translate OID</button>
+    </section>
+
+    <section class="card">
+      <h2>Result</h2>
+      <div id="result">
+        <p style="color:var(--muted);">Enter an OID to see translation</p>
+      </div>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>Common SNMP OIDs</h2>
+      <div style="display:grid;grid-template-columns:repeat(auto-fill,minmax(300px,1fr));gap:12px;">
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.1.1.0')">
+          <div class="common-oid-name">System Description</div>
+          <div class="common-oid-num">1.3.6.1.2.1.1.1.0 (sysDescr)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.1.3.0')">
+          <div class="common-oid-name">System Uptime</div>
+          <div class="common-oid-num">1.3.6.1.2.1.1.3.0 (sysUpTime)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.1.5.0')">
+          <div class="common-oid-name">System Name</div>
+          <div class="common-oid-num">1.3.6.1.2.1.1.5.0 (sysName)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.2.1.0')">
+          <div class="common-oid-name">Interface Count</div>
+          <div class="common-oid-num">1.3.6.1.2.1.2.1.0 (ifNumber)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.25.1.1.0')">
+          <div class="common-oid-name">Host Uptime</div>
+          <div class="common-oid-num">1.3.6.1.2.1.25.1.1.0 (hrSystemUptime)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.25.2.3.1.3.1')">
+          <div class="common-oid-name">Storage Description</div>
+          <div class="common-oid-num">1.3.6.1.2.1.25.2.3.1.3 (hrStorageDescr)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.2.1.25.3.2.1.3.1')">
+          <div class="common-oid-name">CPU Load</div>
+          <div class="common-oid-num">1.3.6.1.2.1.25.3.3.1.2 (hrProcessorLoad)</div>
+        </div>
+        <div class="common-oid" onclick="selectOid('1.3.6.1.4.1')">
+          <div class="common-oid-name">Enterprise OIDs</div>
+          <div class="common-oid-num">1.3.6.1.4.1 (enterprises)</div>
+        </div>
+      </div>
+    </section>
+
+    <section class="card" style="grid-column:1/-1;">
+      <h2>SNMP MIB Tree Structure</h2>
+      <div class="result">
+        <div style="font-family:'Fira Code',monospace;font-size:13px;line-height:1.8;">
+          <div>1 - iso</div>
+          <div>&nbsp;&nbsp;3 - org</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;6 - dod</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;1 - internet</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;1 - directory</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;2 - mgmt (standard MIBs)</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;1 - mib-2 (MIB-II)</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;1 - system</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;2 - interfaces</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;25 - host</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;3 - experimental</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;4 - private</div>
+          <div>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;1 - enterprises (vendor-specific MIBs)</div>
+        </div>
+      </div>
+    </section>
+  </main>
+
+  <script>
+    const oidDatabase = {
+      '1.3.6.1.2.1.1.1.0': { name: 'sysDescr.0', desc: 'A textual description of the entity including hardware type, OS, and networking software', category: 'System' },
+      '1.3.6.1.2.1.1.2.0': { name: 'sysObjectID.0', desc: 'Vendor authoritative identification of the network management subsystem', category: 'System' },
+      '1.3.6.1.2.1.1.3.0': { name: 'sysUpTime.0', desc: 'Time since the network management portion of the system was last re-initialized', category: 'System' },
+      '1.3.6.1.2.1.1.4.0': { name: 'sysContact.0', desc: 'Contact person for this managed node', category: 'System' },
+      '1.3.6.1.2.1.1.5.0': { name: 'sysName.0', desc: 'Administratively assigned name for this managed node', category: 'System' },
+      '1.3.6.1.2.1.1.6.0': { name: 'sysLocation.0', desc: 'Physical location of this node', category: 'System' },
+      '1.3.6.1.2.1.2.1.0': { name: 'ifNumber.0', desc: 'Number of network interfaces present on this system', category: 'Interfaces' },
+      '1.3.6.1.2.1.2.2.1.2': { name: 'ifDescr', desc: 'Textual description of the interface', category: 'Interfaces' },
+      '1.3.6.1.2.1.2.2.1.5': { name: 'ifSpeed', desc: 'Estimate of interfaces current bandwidth in bits per second', category: 'Interfaces' },
+      '1.3.6.1.2.1.2.2.1.7': { name: 'ifAdminStatus', desc: 'Desired state of the interface (up/down/testing)', category: 'Interfaces' },
+      '1.3.6.1.2.1.2.2.1.8': { name: 'ifOperStatus', desc: 'Current operational state of the interface', category: 'Interfaces' },
+      '1.3.6.1.2.1.2.2.1.10': { name: 'ifInOctets', desc: 'Total number of octets received on the interface', category: 'Interfaces' },
+      '1.3.6.1.2.1.2.2.1.16': { name: 'ifOutOctets', desc: 'Total number of octets transmitted out of the interface', category: 'Interfaces' },
+      '1.3.6.1.2.1.4.20.1.1': { name: 'ipAdEntAddr', desc: 'IP address to which this entry pertains', category: 'IP' },
+      '1.3.6.1.2.1.25.1.1.0': { name: 'hrSystemUptime.0', desc: 'Amount of time since this host was last initialized', category: 'Host Resources' },
+      '1.3.6.1.2.1.25.2.2.0': { name: 'hrMemorySize.0', desc: 'Amount of physical main memory contained by the host', category: 'Host Resources' },
+      '1.3.6.1.2.1.25.2.3.1.3': { name: 'hrStorageDescr', desc: 'Description of the storage unit', category: 'Host Resources' },
+      '1.3.6.1.2.1.25.2.3.1.5': { name: 'hrStorageSize', desc: 'Size of the storage represented by this entry in units', category: 'Host Resources' },
+      '1.3.6.1.2.1.25.2.3.1.6': { name: 'hrStorageUsed', desc: 'Amount of storage used in this storage unit', category: 'Host Resources' },
+      '1.3.6.1.2.1.25.3.2.1.3': { name: 'hrDeviceDescr', desc: 'Textual description of this device', category: 'Host Resources' },
+      '1.3.6.1.2.1.25.3.3.1.2': { name: 'hrProcessorLoad', desc: 'Average CPU utilization over the last minute', category: 'Host Resources' },
+      '1.3.6.1.4.1': { name: 'enterprises', desc: 'Private enterprise OID space for vendor-specific MIBs', category: 'Private' }
+    };
+
+    function selectOid(oid) {
+      document.getElementById('oid').value = oid;
+      lookup();
+    }
+
+    function lookup() {
+      const input = document.getElementById('oid').value.trim();
+      let oid = input;
+      let found = null;
+
+      // Check if input is numeric OID
+      if (/^[\d.]+$/.test(input)) {
+        found = oidDatabase[input];
+        // Also check partial match
+        if (!found) {
+          for (const [key, value] of Object.entries(oidDatabase)) {
+            if (key.startsWith(input) || input.startsWith(key)) {
+              found = { ...value, oid: key, partial: true };
+              break;
+            }
+          }
+        } else {
+          found = { ...found, oid: input };
+        }
+      } else {
+        // Search by name
+        for (const [key, value] of Object.entries(oidDatabase)) {
+          if (value.name.toLowerCase().includes(input.toLowerCase()) || input.toLowerCase().includes(value.name.toLowerCase().split('.')[0])) {
+            found = { ...value, oid: key };
+            oid = key;
+            break;
+          }
+        }
+      }
+
+      let html = '';
+
+      if (found) {
+        html += `<div class="result">`;
+        html += `<div class="oid-name">${found.name}</div>`;
+        html += `<div class="oid-path">${found.oid}</div>`;
+        html += `<div style="margin:12px 0;"><span style="background:rgba(16,185,129,0.15);padding:4px 10px;border-radius:6px;font-size:12px;font-weight:600;color:var(--accent);">${found.category}</span></div>`;
+        html += `<div class="oid-desc">${found.desc}</div>`;
+
+        // Show OID path breakdown
+        const parts = found.oid.split('.');
+        html += `<div style="margin-top:16px;padding-top:16px;border-top:1px solid #1f2937;">`;
+        html += `<div style="font-weight:600;margin-bottom:8px;">OID Path:</div>`;
+        html += `<div style="font-family:'Fira Code',monospace;font-size:12px;color:var(--muted);">`;
+        const pathNames = ['iso', 'org', 'dod', 'internet', 'mgmt', 'mib-2'];
+        parts.slice(0, Math.min(parts.length, 7)).forEach((part, i) => {
+          html += `${part}${i < pathNames.length ? ` (${pathNames[i]})` : ''} ${i < parts.length - 1 ? '→ ' : ''}`;
+        });
+        html += `</div></div>`;
+
+        html += `<div style="margin-top:16px;padding-top:16px;border-top:1px solid #1f2937;">`;
+        html += `<div style="font-weight:600;margin-bottom:8px;">SNMP Query Example:</div>`;
+        html += `<div style="background:#000;border-radius:6px;padding:12px;font-family:'Fira Code',monospace;font-size:12px;overflow-x:auto;">`;
+        html += `snmpget -v2c -c public localhost ${found.oid}<br>`;
+        html += `snmpwalk -v2c -c public localhost ${found.oid.split('.').slice(0, -1).join('.')}`;
+        html += `</div></div>`;
+
+        html += `</div>`;
+      } else {
+        html += `<div class="result">`;
+        html += `<div style="color:var(--muted);">`;
+        html += `<strong>OID not found in database</strong><br><br>`;
+        html += `Entered: <span style="font-family:'Fira Code',monospace;">${oid}</span><br><br>`;
+        html += `This OID may be valid but not in our database. Common SNMP OID ranges:<br>`;
+        html += `• 1.3.6.1.2.1.1.x - System group<br>`;
+        html += `• 1.3.6.1.2.1.2.x - Interfaces group<br>`;
+        html += `• 1.3.6.1.2.1.25.x - Host resources<br>`;
+        html += `• 1.3.6.1.4.1.x - Private enterprises`;
+        html += `</div></div>`;
+      }
+
+      document.getElementById('result').innerHTML = html;
+    }
+
+    lookup();
+  </script>
+</body>
+</html>
diff --git a/tools/stride-threat-model-generator/docs/README.md b/tools/stride-threat-model-generator/docs/README.md
new file mode 100644
index 0000000..52bf146
--- /dev/null
+++ b/tools/stride-threat-model-generator/docs/README.md
@@ -0,0 +1,36 @@
+# STRIDE Threat Model Generator
+
+Generate comprehensive threat models using Microsoft's STRIDE methodology for security analysis.
+
+## Features
+
+- STRIDE threat modeling framework:
+  - **S** - Spoofing (authentication threats)
+  - **T** - Tampering (integrity threats)
+  - **R** - Repudiation (accountability threats)
+  - **I** - Information Disclosure (confidentiality threats)
+  - **D** - Denial of Service (availability threats)
+  - **E** - Elevation of Privilege (authorization threats)
+- Configure system details (name, type, data, users)
+- Automatic threat generation based on system type
+- Severity ratings (High, Medium, Low)
+- Mitigation recommendations
+- Export threat model
+- Multiple system types supported (Web, API, Mobile, Desktop, IoT, Cloud)
+
+## Usage
+
+1. Enter system/application name
+2. Select system type
+3. Describe data types handled
+4. List user types
+5. Click "Generate STRIDE Threat Model"
+6. Review identified threats by category
+7. Examine severity and mitigations
+8. Export for documentation
+
+## Requirements
+
+- Modern web browser
+- No server or dependencies required
+- Works completely offline
diff --git a/tools/stride-threat-model-generator/docs/screenshot.png b/tools/stride-threat-model-generator/docs/screenshot.png
new file mode 100644
index 0000000..b55ad08
Binary files /dev/null and b/tools/stride-threat-model-generator/docs/screenshot.png differ
diff --git a/tools/stride-threat-model-generator/index.html b/tools/stride-threat-model-generator/index.html
new file mode 100644
index 0000000..80acb01
--- /dev/null
+++ b/tools/stride-threat-model-generator/index.html
@@ -0,0 +1,234 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>STRIDE Threat Model Generator</title>
+  <style>
+    :root { color-scheme: light dark; --bg:#1a0f1e; --panel:#2a1a3e; --text:#e5e7eb; --muted:#94a3b8; --accent:#ec4899; }
+    * { box-sizing: border-box; }
+    body { margin:0; font-family:'Inter',-apple-system,BlinkMacSystemFont,sans-serif; background:radial-gradient(circle at 30% 25%,#3a1f4e,#1a0f1e 70%); color:var(--text); min-height:100vh; }
+    header { padding:24px 32px 20px; border-bottom:1px solid #1f2937; }
+    h1 { margin:0; font-size:clamp(26px,4.5vw,36px); letter-spacing:-0.03em; font-weight:800; }
+    .subtitle { margin:8px 0 0; color:var(--muted); }
+    main { padding:24px 32px 48px; max-width:1600px; margin:0 auto; }
+    .card { background:linear-gradient(145deg,rgba(255,255,255,0.04),rgba(0,0,0,0.3)); border:1px solid #1f2937; border-radius:16px; padding:20px; box-shadow:0 16px 48px rgba(0,0,0,0.4); margin-bottom:20px; }
+    .card h2 { margin:0 0 16px; font-size:20px; font-weight:700; }
+    label { display:block; margin:12px 0 8px; font-weight:600; color:var(--muted); font-size:14px; }
+    input, select, textarea { width:100%; padding:12px; border-radius:10px; border:1px solid #1f2937; background:#1a0f1e; color:var(--text); font-size:14px; font-family:inherit; }
+    textarea { min-height:100px; resize:vertical; }
+    button { margin-top:14px; padding:13px 24px; border:none; border-radius:10px; background:linear-gradient(135deg,#ec4899,#db2777); color:#fff; font-weight:700; cursor:pointer; box-shadow:0 8px 24px rgba(236,72,153,0.3); }
+    button:hover { transform:translateY(-1px); }
+    .threat-category { background:#1a0f1e; border-left:4px solid var(--accent); border-radius:8px; padding:16px; margin:12px 0; }
+    .threat-category h3 { margin:0 0 12px; color:var(--accent); font-size:18px; }
+    .threat-item { background:rgba(255,255,255,0.02); border:1px solid #1f2937; border-radius:6px; padding:12px; margin:8px 0; }
+    .threat-severity { display:inline-block; padding:4px 10px; border-radius:6px; font-size:12px; font-weight:700; }
+    .severity-high { background:rgba(239,68,68,0.2); color:#ef4444; }
+    .severity-medium { background:rgba(251,146,60,0.2); color:#fb923c; }
+    .severity-low { background:rgba(34,197,94,0.2); color:#22c55e; }
+    .grid { display:grid; grid-template-columns:repeat(auto-fit,minmax(400px,1fr)); gap:20px; }
+    pre { background:#1a0f1e; border:1px solid #1f2937; border-radius:10px; padding:16px; font-family:'Fira Code',monospace; font-size:13px; line-height:1.6; white-space:pre-wrap; overflow-x:auto; }
+  </style>
+</head>
+<body>
+  <header>
+    <h1>🛡️ STRIDE Threat Model Generator</h1>
+    <p class="subtitle">Generate comprehensive threat models using Microsoft's STRIDE methodology for security analysis</p>
+  </header>
+
+  <main>
+    <div class="grid">
+      <section class="card">
+        <h2>System Information</h2>
+
+        <label for="systemName">System/Application Name</label>
+        <input id="systemName" type="text" placeholder="e.g., E-commerce API" value="Payment Processing System" />
+
+        <label for="systemType">System Type</label>
+        <select id="systemType">
+          <option value="web">Web Application</option>
+          <option value="api">API/Web Service</option>
+          <option value="mobile">Mobile Application</option>
+          <option value="desktop">Desktop Application</option>
+          <option value="iot">IoT Device</option>
+          <option value="cloud">Cloud Service</option>
+        </select>
+
+        <label for="dataTypes">Data Types Handled</label>
+        <textarea id="dataTypes" placeholder="List data types (e.g., PII, credit cards, health records)">Credit card data, user PII, transaction history, authentication tokens</textarea>
+
+        <label for="users">User Types</label>
+        <textarea id="users" placeholder="List user types (e.g., customers, admins, external APIs)">Customers, merchants, admin users, payment gateway API</textarea>
+
+        <button onclick="generate()">Generate STRIDE Threat Model</button>
+      </section>
+
+      <section class="card">
+        <h2>STRIDE Overview</h2>
+        <div class="threat-category">
+          <h3>S - Spoofing</h3>
+          <p style="color:var(--muted);font-size:14px;">Impersonating something or someone else (authentication threats)</p>
+        </div>
+        <div class="threat-category">
+          <h3>T - Tampering</h3>
+          <p style="color:var(--muted);font-size:14px;">Modifying data or code (integrity threats)</p>
+        </div>
+        <div class="threat-category">
+          <h3>R - Repudiation</h3>
+          <p style="color:var(--muted);font-size:14px;">Claiming to not have performed an action (accountability threats)</p>
+        </div>
+        <div class="threat-category">
+          <h3>I - Information Disclosure</h3>
+          <p style="color:var(--muted);font-size:14px;">Exposing information to unauthorized parties (confidentiality threats)</p>
+        </div>
+        <div class="threat-category">
+          <h3>D - Denial of Service</h3>
+          <p style="color:var(--muted);font-size:14px;">Disrupting or degrading service (availability threats)</p>
+        </div>
+        <div class="threat-category">
+          <h3>E - Elevation of Privilege</h3>
+          <p style="color:var(--muted);font-size:14px;">Gaining unauthorized capabilities (authorization threats)</p>
+        </div>
+      </section>
+    </div>
+
+    <section class="card">
+      <h2>Generated Threat Model</h2>
+      <div id="threats"></div>
+    </section>
+
+    <section class="card">
+      <h2>Export Threat Model</h2>
+      <pre id="export">Generate a threat model first</pre>
+      <button onclick="copyExport()">📋 Copy to Clipboard</button>
+      <button onclick="downloadExport()">💾 Download Report</button>
+    </section>
+  </main>
+
+  <script>
+    const strideTemplates = {
+      spoofing: [
+        { threat: 'Weak or missing authentication', mitigation: 'Implement multi-factor authentication (MFA)', severity: 'high' },
+        { threat: 'Session token theft/hijacking', mitigation: 'Use secure, HTTPOnly cookies with proper expiration', severity: 'high' },
+        { threat: 'Credential stuffing attacks', mitigation: 'Implement rate limiting and CAPTCHA', severity: 'medium' },
+        { threat: 'Man-in-the-middle attacks', mitigation: 'Enforce HTTPS/TLS for all communications', severity: 'high' }
+      ],
+      tampering: [
+        { threat: 'Data modification in transit', mitigation: 'Use TLS/SSL encryption and verify integrity', severity: 'high' },
+        { threat: 'SQL injection attacks', mitigation: 'Use parameterized queries and input validation', severity: 'high' },
+        { threat: 'API parameter manipulation', mitigation: 'Validate and sanitize all inputs server-side', severity: 'medium' },
+        { threat: 'File upload attacks', mitigation: 'Validate file types, scan for malware, use separate storage', severity: 'high' }
+      ],
+      repudiation: [
+        { threat: 'Users denying actions', mitigation: 'Implement comprehensive audit logging', severity: 'medium' },
+        { threat: 'Missing transaction logs', mitigation: 'Log all critical operations with timestamps', severity: 'medium' },
+        { threat: 'Log tampering', mitigation: 'Use write-once storage or log forwarding', severity: 'low' },
+        { threat: 'Insufficient accountability', mitigation: 'Digital signatures for critical transactions', severity: 'medium' }
+      ],
+      information: [
+        { threat: 'Sensitive data in logs', mitigation: 'Sanitize logs, never log credentials or PII', severity: 'high' },
+        { threat: 'API information leakage', mitigation: 'Implement proper error handling, generic error messages', severity: 'medium' },
+        { threat: 'Insecure data storage', mitigation: 'Encrypt sensitive data at rest using AES-256', severity: 'high' },
+        { threat: 'Unencrypted backups', mitigation: 'Encrypt all backups and secure storage access', severity: 'high' }
+      ],
+      dos: [
+        { threat: 'Resource exhaustion attacks', mitigation: 'Implement rate limiting and resource quotas', severity: 'medium' },
+        { threat: 'Application-layer DDoS', mitigation: 'Use CDN and DDoS protection services', severity: 'medium' },
+        { threat: 'Database connection exhaustion', mitigation: 'Connection pooling and query timeouts', severity: 'medium' },
+        { threat: 'Algorithmic complexity attacks', mitigation: 'Set input size limits and optimize algorithms', severity: 'low' }
+      ],
+      privilege: [
+        { threat: 'Privilege escalation via API', mitigation: 'Implement role-based access control (RBAC)', severity: 'high' },
+        { threat: 'Insecure direct object references', mitigation: 'Validate authorization for all resource access', severity: 'high' },
+        { threat: 'Path traversal attacks', mitigation: 'Validate and sanitize file paths, use whitelists', severity: 'high' },
+        { threat: 'Missing function-level access control', mitigation: 'Enforce authorization checks on all endpoints', severity: 'high' }
+      ]
+    };
+
+    function generate() {
+      const systemName = document.getElementById('systemName').value || 'System';
+      const systemType = document.getElementById('systemType').value;
+      const dataTypes = document.getElementById('dataTypes').value;
+      const users = document.getElementById('users').value;
+
+      let html = `<div style="background:#1a0f1e;border:1px solid var(--accent);border-radius:10px;padding:20px;margin-bottom:20px;">`;
+      html += `<h3 style="margin:0 0 12px;color:var(--accent);">System: ${systemName}</h3>`;
+      html += `<p style="color:var(--muted);margin:0;"><strong>Type:</strong> ${systemType}</p>`;
+      html += `<p style="color:var(--muted);margin:8px 0 0;"><strong>Data Types:</strong> ${dataTypes}</p>`;
+      html += `<p style="color:var(--muted);margin:8px 0 0;"><strong>Users:</strong> ${users}</p>`;
+      html += `</div>`;
+
+      const categories = [
+        { key: 'spoofing', name: 'Spoofing Identity', color: '#ef4444' },
+        { key: 'tampering', name: 'Tampering with Data', color: '#f97316' },
+        { key: 'repudiation', name: 'Repudiation', color: '#f59e0b' },
+        { key: 'information', name: 'Information Disclosure', color: '#ec4899' },
+        { key: 'dos', name: 'Denial of Service', color: '#a855f7' },
+        { key: 'privilege', name: 'Elevation of Privilege', color: '#dc2626' }
+      ];
+
+      categories.forEach(cat => {
+        const threats = strideTemplates[cat.key];
+        html += `<div class="threat-category" style="border-left-color:${cat.color};">`;
+        html += `<h3 style="color:${cat.color};">${cat.name}</h3>`;
+
+        threats.forEach(t => {
+          html += `<div class="threat-item">`;
+          html += `<div style="display:flex;justify-content:space-between;align-items:center;margin-bottom:8px;">`;
+          html += `<strong>${t.threat}</strong>`;
+          html += `<span class="threat-severity severity-${t.severity}">${t.severity.toUpperCase()}</span>`;
+          html += `</div>`;
+          html += `<div style="color:var(--muted);font-size:13px;"><strong>Mitigation:</strong> ${t.mitigation}</div>`;
+          html += `</div>`;
+        });
+
+        html += `</div>`;
+      });
+
+      document.getElementById('threats').innerHTML = html;
+
+      // Generate export
+      let exportText = `STRIDE THREAT MODEL REPORT\n`;
+      exportText += `${'='.repeat(80)}\n\n`;
+      exportText += `System: ${systemName}\n`;
+      exportText += `Type: ${systemType}\n`;
+      exportText += `Generated: ${new Date().toISOString()}\n\n`;
+      exportText += `Data Types Handled:\n${dataTypes}\n\n`;
+      exportText += `User Types:\n${users}\n\n`;
+      exportText += `${'='.repeat(80)}\n\n`;
+
+      categories.forEach(cat => {
+        exportText += `${cat.name.toUpperCase()}\n`;
+        exportText += `${'-'.repeat(80)}\n\n`;
+
+        strideTemplates[cat.key].forEach(t => {
+          exportText += `Threat: ${t.threat}\n`;
+          exportText += `Severity: ${t.severity.toUpperCase()}\n`;
+          exportText += `Mitigation: ${t.mitigation}\n\n`;
+        });
+      });
+
+      document.getElementById('export').textContent = exportText;
+    }
+
+    function copyExport() {
+      const text = document.getElementById('export').textContent;
+      navigator.clipboard.writeText(text).then(() => alert('Copied to clipboard!'));
+    }
+
+    function downloadExport() {
+      const text = document.getElementById('export').textContent;
+      const systemName = document.getElementById('systemName').value.replace(/\s+/g, '_') || 'system';
+      const blob = new Blob([text], { type: 'text/plain' });
+      const url = URL.createObjectURL(blob);
+      const a = document.createElement('a');
+      a.href = url;
+      a.download = `STRIDE_${systemName}_${Date.now()}.txt`;
+      a.click();
+      URL.revokeObjectURL(url);
+    }
+
+    generate();
+  </script>
+</body>
+</html>