Stars
A recon tool that uses ML to predict subdomains. Then returns those that resolve.
Cybersecurity AI (CAI), an open Bug Bounty-ready Artificial Intelligence
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
Zero shot vulnerability discovery using LLMs
The recursive internet scanner for hackers. 🧡
Unsecure time-based secret exploitation and Sandwich attack implementation Resources
The all-in-one Desktop & Docker AI application with built-in RAG, AI agents, No-code agent builder, MCP compatibility, and more.
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
Langflow is a powerful tool for building and deploying AI-powered agents and workflows.
Creating and Using an Open Assistant API locally (Pythia 12B GPT model)
♾️ toolkit for air-gapped LLMs on consumer-grade hardware
Interact with your documents using the power of GPT, 100% privately, no data leaks
AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.
An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
Serizao / pwndoc
Forked from pwndoc/pwndocPentest Report Generator
A Burp Suite extension to extract datas from source code while browsing.
A fast, simple, recursive content discovery tool written in Rust.
In-depth attack surface mapping and asset discovery
Generates permutations, alterations and mutations of subdomains and then resolves them
Automated & Manual Wordlists provided by Assetnote
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Directory/File, DNS and VHost busting tool written in Go
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …