Stars
🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens
Penetration-List: A comprehensive resource for testers, covering all types of vulnerabilities and materials used in Penetration Testing. Includes payloads, dorks, fuzzing materials, and offers in-d…
This repository contains complete resources and coding practices for malware development using Rust 🦀.
USB Rubber Ducky type scripts written for the DigiSpark.
A tool to dump a git repository from a website
I was searching for such resource to work as cheat sheet series and guide me through different attack scenarios for API attacks, didn’t find one, so decided to create it. We will have a reference o…
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
The open-source, cross-platform API client for GraphQL, REST, WebSockets, SSE and gRPC. With Cloud, Local and Git storage.
🙃 A delightful community-driven (with 2,400+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python…
Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
Automated & Manual Wordlists provided by Assetnote
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
OSINT tool that finds domains, subdomains, directories, endpoints and files for a given seed URL.
An OOB interaction gathering server and client library
Nuclei Template Collection
Lightning-fast passive subdomain discovery tool for security professionals and bug bounty hunters.
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
Directory/File, DNS and VHost busting tool written in Go
Convolutional neural network for analyzing pentest screenshots
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.