A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

A book about compiling Racket and Python to x86-64 assembly

This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.

Collection of tech talks, papers and web links on Distributed Systems, Scalability and System Design.

Solutions and Notes for Labs of Computer Systems: A Programmer's Perspective 3rd Editon // 《深入理解计算机系统》第三版的实验文件、解答与笔记

List of Computer Science courses with video lectures.

A categorized list of C++ resources.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A simple tool that helps to find assets/domains based on the Google Analytics ID.

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!

Secret Magpie - Secret Detection Tool

Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.

Roadmap to becoming an Artificial Intelligence Expert in 2022

Never forget where you inject.

apk.sh makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.

A Collection of Logger++ Filters for Hunting API Vulnerabilities

Here I gather all the resources about hacking that I find interesting

A simple tool for bypassing file upload restrictions.

A set of tools, procedures, and playbooks for performing bug bounties

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

A sorted and updated list of security wargame sites.

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

A blind XSS detection and XSS data capture framework

The roadmap for learning the C++ programming language for beginners and experienced devs.

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advan…

This extension will help you to detect GET/POST based XSS vulnerability in any website easily

Standalone utility for service discovery on open ports!

Searcher for cross-site leaks (XS-Leaks)

🏴‍☠️ Find dead-links (broken links)