Stars
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Take a list of domains and probe for working HTTP and HTTPS servers
Find domains and subdomains related to a given domain
Fetch all the URLs that the Wayback Machine knows about for a domain
In-depth attack surface mapping and asset discovery
Official electron build of draw.io
LuLu is the free open-source macOS firewall
Cat follow mouse real! A hacky script I wrote to put a cat on my site.
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
Yet another doom clone (in 13kb of JavaScript)
Robust evasion attacks against neural network to find adversarial examples
An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
Prompt, run, edit, and deploy full-stack web applications
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
Unit, API & Integration Testing Agent for Developers. Generate tests, mocks/stubs for your APIs that actually work!
This repo contains the code for my secure code review challenges
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
A GPT-empowered penetration testing tool
Master programming by recreating your favorite technologies from scratch.