#
Starred repositories
Set of tools to assess and improve LLM security.
Customizable browser's home page to interact with your homeserver's Docker containers (e.g. Sonarr/Radarr)
statping-ng / statping-ng
Forked from statping/statpingAn updated drop-in for statping. A Status Page for monitoring your websites and applications with beautiful graphs, analytics, and plugins. Run on any type of environment.
Official Repository: Telegram bot which can download direct links, torrents, nzb, google drive, telegram document, any file/folder from rclone supported clouds, all yt-dlp supported sites and jdown…
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Discover hidden debugging parameters and uncover web application secrets
🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.
Various tips & tricks
The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.
A FUSE filesystem written in Python for reading and writing files to and from Telegram.
Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
My Private Bug Hunting Methodology
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!
Convolutional neural network for analyzing pentest screenshots
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leaks.
A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
Small, fast tool for performing reverse DNS lookups en masse.
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference