Stars
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving toโฆ
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving toโฆ
A Toolchain to make Build and Run eBPF programs easier
Conductor is an event driven orchestration platform
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground ๐
Analyze HTTP and DNS requests and create custom DNS records for your subdomain
Master programming by recreating your favorite technologies from scratch.
.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
Official writeups for Cyber Apocalypse CTF 2024: Hacker Royale
Find, verify, and analyze leaked credentials
๐ฉ๐ฟโ๐๐จ๐ฝโ๐๐ฉ๐ปโ๐CNCF Mentoring: LFX Mentorship + Summer of Code
Whistleblower is a tool for leaking system prompts and capability discovery of any API accessible LLM App. Built for developers, security red-teams and folks who want to know what's going on insideโฆ
A collection of PDF/books about the modern web application security and bug bounty.
Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.
A next-generation crawling and spidering framework.
๐ธ Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! ๐งโโ๏ธ
Writeups for some of the challenges of BACKDOOR CTF 2023 hosted by IITR
Writeups for some of the challenges from BackdoorCTF conducted by IIT Roorkee
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.