BBT - Bug Bounty Tools (examples💡)

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Code at the speed of thought – Zed is a high-performance, multiplayer code editor from the creators of Atom and Tree-sitter.

The open source platform for AI-native application development.

Building a quick conversation-based search demo with Lepton AI.

Subdomain and target enumeration tool built for offensive security testing

The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains and brands.

Wi-Fi Exploitation Framework

An OSINT tool to search for accounts by username and email in social networks.

CVE-2022-26134 Proof of Concept

Information gathering tool - OSINT

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Distributed malware processing framework based on Python, Redis and S3.

This repository has the JSON file required to perform user enumeration on various websites.

Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues i…

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

A python script that will backup all your bitbucket repos locally (both git and mercurial)

Malware Configuration And Payload Extraction

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

A Simple Ransomware Vaccine

Browser-based network scanner & local-IP detection

Nikto web server scanner

Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API.

Maintained collection of OSINT related resources. (All Free & Actionable)

WAFNinja is a tool which contains two functions to attack Web Application Firewalls.

40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...

Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber

✨ A Karma plugin. Adds untested files to coverage statistic