Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.

Python 483 86 Updated Feb 1, 2025

semgrep / semgrep

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

OCaml 11,002 657 Updated Feb 7, 2025

wireghoul / graudit

grep rough audit - source code auditing tool

Shell 1,576 248 Updated Dec 20, 2024

HackTricks-wiki / hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

JavaScript 9,450 2,797 Updated Feb 5, 2025

Az0x7 / vulnerability-Checklist

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

2,821 636 Updated Feb 10, 2024

xnl-h4ck3r / GAP-Burp-Extension

Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist

Python 1,300 139 Updated Jul 14, 2024

CyberSecurityUP / GCP-Pentest-Checklist

235 61 Updated Jan 23, 2025

ihebski / A-Red-Teamer-diaries

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

1,754 304 Updated May 23, 2024

DERE-ad2001 / Frida-Labs

The repo contains a series of challenges for learning Frida for Android Exploitation.

951 135 Updated Jul 26, 2024

actuator / Android-Security-Exploits-YouTube-Curriculum

🔓A curated list of modern Android exploitation conference talks.

481 34 Updated Feb 4, 2025

Narasimha1997 / fake-sms

A simple command line tool using which you can skip phone number based SMS verification by using a temporary phone number that acts like a proxy.

Go 2,739 175 Updated Aug 1, 2023

mentebinaria / retoolkit

Reverse Engineer's Toolkit

Inno Setup 4,879 506 Updated Apr 14, 2024

lico-n / ZygiskFrida

Injects frida gadget using zygisk to bypass anti-tamper checks.

C++ 556 101 Updated Apr 28, 2024

ptswarm / reFlutter

Flutter Reverse Engineering Framework

Python 1,318 183 Updated Apr 11, 2022

KoelhoSec / pimpmyP4wnP1

This is a simple bash script to fix errors with apt update, upgrade MetaSploit and run some upgrades to improve the system usability without breaking it, by using Pimpmykali script.

Shell 99 14 Updated Aug 16, 2024

0xor0ne / awesome-list

Cybersecurity oriented awesome list

1,659 178 Updated Feb 8, 2025

randorisec / MobileHackingCheatSheet

Basics on commands/tools/info on how to assess the security of mobile applications

1,522 236 Updated Dec 19, 2023

fyoorer / ShadowClone

Unleash the power of cloud

Python 747 102 Updated Nov 19, 2024

n0kovo / n0kovo_subdomains

An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.

583 81 Updated Apr 4, 2023

google / security-research

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

C 3,574 431 Updated Feb 6, 2025