A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

🔐 A CLI tool to extract server certificates

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

The recursive internet scanner for hackers. 🧡

goattribute is a lightweight Go library that allows you to set (and get) attributes of a struct dynamically, using dot notation (e.g., `a.b.c`).

This repo includes ChatGPT prompt curation to use ChatGPT and other LLM tools better.

A new version of Soot with a completely overhauled architecture

SysWhispers on Steroids - AV/EDR evasion via direct system calls.

Find subdomains on GitHub.

Convert notion pages, block and list of blocks to markdown (supports nesting and custom parsing)

All about bug bounty (bypasses, payloads, and etc)

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

Soot - A Java optimization framework

A Workflow Engine for Offensive Security

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

Self-developed tools for Lateral Movement/Code Execution

A protective and Low Level Shellcode Loader that defeats modern EDR systems.

Debug environment for PHP inside a Docker container. Document waiting to be completed.

HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2000 up to Windows Server 2019.

Top Ten Web Hacking Techniques List

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.