🥧 HTTPie CLI — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more.

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

Stroom is a highly scalable data storage, processing and analysis platform.

Automated Subnet Scanner

Bootstrap Kubernetes the hard way on OpenStack Platform. No scripts.

articles

Open-source vulnerability disclosure and bug bounty program database

This information provides helpful information to make it easier to discover new attack surface on HackerOne.com.

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Tools and datas related to Bug Bounty.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!

Automated network asset, email, and social media profile discovery and cataloguing.

This repository created for personal use and added tools from my latest blog post.

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and re…

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Pentest Lab on OpenStack with Heat, Chef provisioning and Docker

A repository for learning various heap exploitation techniques.

Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.

Wiki to collect Red Team infrastructure hardening resources

A curated list of hacking environments where you can train your cyber skills legally and safely

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

✍️ A curated list of CVE PoCs.

NVDA, the free and open source Screen Reader for Microsoft Windows

A Python3 Penetration Testing Package

Automatic SQL injection and database takeover tool

Creative and unusual things that can be done with the Windows API.

Decrypted content of eqgrp-auction-file.tar.xz