#
Starred repositories
Checklist of the most important security countermeasures when designing, testing, and releasing your API
🎯 SQL Injection Payload List
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
rsatool can be used to calculate RSA and RSA-CRT parameters
RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…
OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…
Automatic SQL injection and database takeover tool
supdevinci / vulhub-labs
Forked from vulhub/vulhubPre-Built Vulnerable Environments Based on Docker-Compose
Ghidra is a software reverse engineering (SRE) framework
Information gathering framework for phone numbers
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
all the basic cheatsheets you need to get started to make notes in obsidian.
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
A collection of various awesome lists for hackers, pentesters and security researchers
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
🕵️♂️ All-in-one OSINT tool for analysing any website