🚀 My stack
A curated list of resources for learning web3 hacking/Security
The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
This challenge is Inon Shkedy's 31 days API Security Tips.
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advan…
A collection of hacking / penetration testing resources to make you better!
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
🔱 Powerfull XSS Scanning and Parameter analysis tool&gem
A curated list of various bug bounty tools
Learning and hunting SQL injection bugs for 50 continuous days
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
💉 Stuff which works in Chrome and maybe Acrobat and Foxit.
File upload vulnerability scanner and exploitation tool.
This small script can download or update all the GitHub repo of your choice.
All about bug bounty (bypasses, payloads, and etc)
Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More