fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Scrapts Scrapts Scrapts

CVE-2024-4367 & CVE-2024-34342 Proof of Concept

List of free GPTs that doesn't require plus subscription

acunetix-13 install in kali linux

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way …

Top disclosed reports from HackerOne

Asset inventory of over 800 public bug bounty programs.

OSCP Cheatsheet by Sai Sathvik

Free 2D symbols for computer network diagrams

A Public available archive of the leaked Vault 7 archive files

PoC for iTerm2 CVEs CVE-2024-38396 and CVE-2024-38395 which allow code execution

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

AI-Powered Automated Penetration Testing Tool

Collection of XSS Payloads for fun and profit

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

Shodan Dorks

This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.

Steal Net-NTLM Hash using Bad-PDF

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

how to look for Leaked Credentials !

40,000+ Nuclei templates for security scanning and detection across diverse web applications and services

Bug Bounty Dorks For World Wide Websites

Useful Github Dorks for BugBounty -

List of Google Dorks for sites that have responsible disclosure program & bug bounty program

List of API's for gathering information about phone numbers, addresses, domains etc