CTFs as you need them

Self-deployed Straight-forward hacking lab machine which designed for new comer who want to learn Penetration Testing field that running inside Docker for easy setup.

🌸 A command-line fuzzy finder

Official QT frontend of radare2

UNIX-like reverse engineering framework and command-line toolset

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" fo…

TCP1P CTF writeup

Automation for javascript recon in bug bounty.

User-Agent , X-Forwarded-For and Referer SQLI Fuzzer

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.

React Google Maps API

Electron JS Browser To Find XSS Vulnerabilities Automatically

A list of cheat sheets for application security

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

LeakLooker GUI - Discover, browse and monitor database/source code leaks

Useful Google Dorks for WebSecurity and Bug Bounty

Accept URLs on stdin, replace all query string values with a user-supplied value

Laravel Vue headless CMS / admin panel / dashboard / builder / API CRUD generator, anything !

Faster xss scanner,support reflected-xss and dom-xss

@talk-ink is a chat app with thread (Twist/Slack clone), the flagship demo of @kontenbase

Tesla Light Show

Mengkonversi angka ke dalam bilangan bahasa Indonesia

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

Trace Labs OSINT Linux Distribution based on Kali.

Username tools for penetration testing

An efficient, small mobile key-value storage framework developed by WeChat. Works on Android, iOS, macOS, Windows, and POSIX.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙