This repository documents my journey in setting up a home lab with virtual machines for cybersecurity learning and experimentation. It covers the configuration of various services

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

You Know, For WEB Fuzzing ! 日站用的字典。

This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 solely and completely with "BurpSuite".

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

A simple script just made for self use for bypassing 403

40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...

Chart-Of-Wordlist helps to create your own custom wordlist. Also in one repository, you can find a list of awesome wordlist.

Small but effective wordlist for brute-forcing and discovering hidden things.

😱 A curated list of amazingly awesome OSINT

A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

A list of resources for those interested in getting started in bug bounties

🎓 Because Education should be free. Contributions welcome! 🕵️

This repository documents my hands on experience and assignments during the Columbia University Cybersecurity Program. It includes home labs related to network security, penetration testing, and de…

A collection of several hundred online tools for OSINT

A curated list of various bug bounty tools

A cheat sheet regarding Penetration testing, Bug Bounties, Capture The Flag and Others in Bahasa.

This repo covers some code execution and AV Evasion methods for Macros in Office documents

API Documentation for Python Projects

🚀✨ Help beginners to contribute to open source projects

In this repository I will be adding past projects I did in codecademy pro in python 3 and will update as I finish more projects

In this Capture The Flag (CTF) challenge, I navigated through a web application named 'Rekall,' leveraging my knowledge of various web application vulnerabilities to uncover 15 hidden flags. Each f…

Designed, developed, and deployed a secure web application hosted on Azure. Implemented IP networking, DNS, SSL/TLS certificates, and Azure Key Vault for enhanced security. Practiced secure web dev…

The project was a part of the Defensive Security unit and involved using Splunk to research and design a monitoring solution.

This repository hosts a comprehensive report on a Capture The Flag (CTF) project conducted on a hypothetical company, Rekall. It details the discovery and exploitation of various vulnerabilities, p…

Labs for Practical Malware Analysis & Triage

Phison 2251-03 (2303) Custom Firmware & Existing Firmware Patches (BadUSB)

Fast subdomains enumeration tool for penetration testers

This is meant to assist people looking for entry level Cybersecurity jobs, as well as study up on skills that they can put on their resume.

Cheat sheet and notes inspired by the book RTFM - Red Team Field Manual