#
Starred repositories
Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used in JAR / WAR / APK applications.
Free online textbook of Jupyter notebooks for fast.ai Computational Linear Algebra course
A new markup-based typesetting system that is powerful and easy to learn.
Free and open source singing game with song editor for desktop, and mobile
Web App to create and share bouldering routes of a climbing gym.
Automagically reverse-engineer REST APIs via capturing traffic
Scan for misconfigured S3 buckets across S3-compatible APIs!
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
HTTPLeaks - All possible ways, a website can leak HTTP requests
A module that helps to manage some tasks on Office 365/Azure via undocumented API
Scientific calculator with math syntax that supports user-defined variables and functions, complex numbers, and estimation of derivatives and integrals
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
A complete, proof-of-concept, C# implementation of the General Number Field Sieve algorithm for factoring very large semi-prime numbers. The focus was on readability and understandability of the co…
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
PoC and tools for exploiting CVE-2020-6516 (Chrome) and CVE-2021-24027 (WhatsApp)
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
A command line utility helps to capture and dump HTTP stream
Go package that aids in binary analysis and exploitation
A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
Public library of space documents and tutorials
Vagrant VirtualBox environment for conducting an internal network penetration test
MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a toolkit that puts together commonly used mobile application reverse engineering and analysis tools to assist in test…
Fetch many paths for many hosts - without killing the hosts