#
Starred repositories
A small tool that extracts relative URLs from a file.
Collection of extracted System Prompts from popular chatbots like ChatGPT, Claude & Gemini
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
A comprehensive reconnaissance and vulnerability scanning tool that combines multiple security assessment capabilities into a single automated workflow.
AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.
Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates when…
A Go-based wrapper for the KNOXSS API to automate XSS vulnerability testing.
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
The Swiss Army knife for automated Web Application Testing
11 Lessons to Get Started Building AI Agents
Command-line tool to detect email spoofing vulnerabilities by analyzing SPF and DMARC DNS records. Supports single and bulk domain checks with multiple output formats.
CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications
jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying sensitive data, such as API endpoints and potential security v…
Collection of methodology and test case for various web vulnerabilities.
List of reporting templates I have used since I started doing BBH.