Starred repositories
A security-focused autonomous AI agent built on Gemini. It leverages the model's native Tool Calling capabilities to perform deep, mission-driven code reviews and detect threats.
Automated Cloud Misconfiguration Testing
Summaries, transcripts, key points, and other useful insights from AWS re:inforce 2025 talks for those of us who don't have time to watch every presentation!
A lightweight Python-based tool to extract and enumerate Android components and automatically generate practical ADB commands
Hello, fellow bug bounty hunters! This repository is a collection of my personal bug bounty and security researching resources, scripts, and notes. My goal is to share useful information and tools …
Cybersecurity AI (CAI), an open Bug Bounty-ready Artificial Intelligence
Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 issues in code. Ideal for SAST and CI/CD integration.
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
Generate Frida bypass scripts for Android APK root and SSL checks.
In this series, we'll be learning about DevSecOps Concepts and Methodology which would help you understand the roles and responsibilities of DevSecOps Engineer as well as help you learn the fundame…
ParaMinder is a Python tool designed to discover web application parameters. It systematically extracts parameters from URL queries, HTML content (including forms), and linked JavaScript files, off…
AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.
MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI wor…
Anthropic's Interactive Prompt Engineering Tutorial
Public Disclosed Bug Bounty Reports formated in markdown
CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications
PromptMe is an educational project that showcases security vulnerabilities in large language models (LLMs) and their web integrations. It includes 10 hands-on challenges inspired by the OWASP LLM T…
A collection of js analysis tools & scripts.