A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Automatic SQL injection and database takeover tool

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

A next generation HTTP client for Python. 🦋

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

HTTP parameter discovery suite.

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Write Pythonic Code Like a Seasoned Developer video course demo materials.

Scanner for CVE-2020-0796 - SMBv3 RCE

Repository for hosting my research papers

This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).