Stars
This is meant to assist people looking for entry level Cybersecurity jobs, as well as study up on skills that they can put on their resume.
⚔️Windows11 Penetration Suite Toolkit 🔰 The First Windows Penetration Testing Environment on Mac M Chips
A tool for inspecting and analyzing mobile application storage files.
Repo containing cracked red teaming tools.
A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances.
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
Scrape domain names from SSL certificates of arbitrary hosts
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Web Application Penetration Testing
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Automatic SSTI detection tool with interactive interface
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
OSCP 2023 Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machines
Collection of methodology and test case for various web vulnerabilities.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …
🐶 A curated list of Web Security materials and resources.
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
A collection of snippets of codes and commands to make your life easier!
Bug Bounty Tools used on Twitch - Recon
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports