Stars
A Magisk/KernelSU module that automatically adds user certificates to the system root CA store
Set of tools to assess and improve LLM security.
A fast, minimalistic scanner for time-based SQL injection (SQLi) detection – built in Go.
Damn Vulnerable MCP Server
Questions that I ask myself at the end of each year and each decade.
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
Methodology, links, tools for OSINT in different countries
The modern API client that lives in your terminal.
The Swiss Army knife for automated Web Application Testing
The Golang Bitfl1p lookup tool for Project Bitfl1p
C 806A ertainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scenarios.
attacksurge / ax
Forked from pry0cc/axiomThe Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbitrary binaries and scripts using any of our nine supported cl…
AeroSpace is an i3-like tiling window manager for macOS
The largest collection of wordlists in yaml for bug bounty tools
A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.
Adversary tradecraft detection, protection, and hunting
log-slapper is an open-source offensive security tool designed for red-team operations as the post-exploit module and assessing your Splunk's security.
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
The Leading Security Assessment Framework for Android.
A list of free and open forensics analysis tools and other resources