Stars
403/401 Bypass Methods + Bash Automation + Your Support ;)
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
A cheat sheet that contains advanced queries for SQL Injection of all types.
Cloud Security Posture Management (CSPM)
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
Automated NoSQL database enumeration and web application exploitation tool.
XSS spider - 66/66 wavsep XSS detected
vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information colle…
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.
Striker is an offensive information and vulnerability scanner.
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
Automated Security Testing For REST API's
A list of open source web security scanners
An Vulnerability detection and Exploitation tool for CVE-2024-7339
A collection of Mathematics + CS + what have you related books collected over the years for school 🎓 and personal reading 📚.
Golang client for querying SecurityTrails API data
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
A recursive internet scanner for hackers.
A collection of handy Bash One-Liners and terminal tricks for data processing and Linux system maintenance.
A fast, simple, recursive content discovery tool written in Rust.