Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...

Express + TypeScript + Boilerplate for Web / API App

Next-generation ORM for Node.js & TypeScript | PostgreSQL, MySQL, MariaDB, SQL Server, SQLite, MongoDB and CockroachDB

🍺 The missing package manager for macOS (or Linux)

Sandbox for securely executing untrusted programs

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

A collection of scripts for assessing Microsoft Azure security

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

☁️ Live reload for Go apps

Open-source, cross platform Qt based IDE for reverse-engineering Android application packages.

A Magisk/KernelSU module that automatically adds user certificates to the system root CA store

Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.

A repository with 3 tools for pwn'ing websites with .git repositories available

My Certificates are MTCNA, MTCUME, and MTCSE. 🙂

Extremely fast Vite-compatible web build tool written in Rust

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

A docker environment for pwn in ctf

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.

Run WPS PIN attacks (Pixie Dust, online bruteforce, PIN prediction) without monitor mode with the wpa_supplicant

Six Degrees of Domain Admin

GhidRust: Rust decompiler plugin for Ghidra

Active Directory certificate abuse.

IDE style command line auto complete

A fast TCP/UDP tunnel over HTTP

Run your GitHub Actions locally 🚀

UniGetUI: The Graphical Interface for your package managers. Could be terribly described as a package manager manager to manage your package managers

Custom NuPhy Air75 V2 Firmware

The original sources of MS-DOS 1.25, 2.0, and 4.0 for reference purposes

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…