Stars
📦 Starter template for a fullstack web application using Go and React with TypeScript.
View HTTP/HTTPS requests made by any Linux program
A web CTF for training developers in bug hunting and secure coding!
File Parser optimised for LLM Ingestion with no loss 🧠 Parse PDFs, Docx, PPTx in a format that is ideal for LLMs.
lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scenarios.
Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
y0k4i-1337 / clairvoyancex
Forked from nikitastupin/clairvoyanceObtain GraphQL API schema despite disabled introspection!
Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()
A tool for exploring each layer in a docker image
Automates the network enumeration process in a fire-and-forget manner, among many more functions. Aims to be the illest Nmap/masscan wrapper alive. Zero effort, zero error network enumeration.
Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automation pipeline.
pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550, CommonsBeanutils1 no cc, JRMPClient, high version JDK Bypas…
A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷
🌐 Identify the technologies powering any website. This is a fork of the now deleted Wappalyzer project by @AliasIO and community.
Bare minimum AWS Security Alerting and Configuration
Attack surface detector that identifies endpoints by static analysis
Use grepaddr to extract (grep) all kinds of addresses from stdin like URLs (incl. IPv4/IPv6), IP addresses & ranges (IPv4/IPv6), e-mail addresses, MAC addresses.