Stars
Langflow is a powerful tool for building and deploying AI-powered agents and workflows.
Zero shot vulnerability discovery using LLMs
403/401 Bypass Methods + Bash Automation + Your Support ;)
Check your WAF before an attacker does
AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
Awesome Bug bounty builder Project
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A collection of PDF/books about the modern web application security and bug bounty.
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve…
A quick and dirty PCAP parser that helps you identify who your applications are sending sensitive data to without encryption.
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
Impacket is a collection of Python classes for working with network protocols.
Red Teaming & Pentesting checklists for various engagements
Infection Monkey - An open-source adversary emulation platform
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
Open-source vulnerability disclosure and bug bounty program database
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
RouterOS Security Research Tooling and Proof of Concepts
Repository that tracks public exploits, vulnerabilities and advisories that I [co-]discovered or [co-]authored.
Advisories, proof of concept files and exploits that have been made public by @pedrib.