log4j rce test environment and poc

Affordable WiFi hacking platform for testing and learning

A Proof-Of-Concept for the recently found CVE-2021-44228 vulnerability.

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Fetch all the URLs that the Wayback Machine knows about for a domain

Monitor linux processes without root permissions

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

A Tool for Domain Flyovers

Take a list of domains and probe for working HTTP and HTTPS servers

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

Find broken links, missing images, etc within your HTML.

Subdomain takeover vulnerability checker

A script to set up a quick Ubuntu 17.10 x64 box with tools I use.

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

Fetch, install and search wordlist archives from websites and torrent peers.

A list of public penetration test reports published by several consulting firms and academic security groups.

Netcat for windows 32/64 bit

Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

A fast TCP/UDP tunnel over HTTP

This repo contains all the Bug Bounty Dorks sourced from different awesome sources and compiled at one place

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

CeWL is a Custom Word List Generator

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, …

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.