Lists (19)
Sort Name ascending (A-Z)
Starred repositories
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
All about bug bounty (bypasses, payloads, and etc)
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
A recursive internet scanner for hackers.
Find and fix 400+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
netspooky / easylkb
Forked from deepseagirl/easylkbeasylkb - Easy Linux Kernel Builder
List of Awesome Asset Discovery Resources
Rails c&c web application for spying Android devices
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Check your WAF before an attacker does
This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.
Notes I took while preparing for eJPT certification by INE Security (passed 19/20, fka eLearn Security)
Attack surface detector that identifies endpoints by static analysis
🔱 Powerfull XSS Scanning and Parameter analysis tool&gem
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
xoreaxeaxeax / movfuscator
Forked from Battelle/movfuscatorThe single instruction C compiler
Burp plugin able to find reflected XSS on page in real-time while browsing on site