Go ahead and axolotl questions

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.

Apollo is a reliable configuration management system suitable for microservice configuration management scenarios.

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

Villain is a high level stage 0/1 C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities) and s…

This mentoring program is designed to help beginners start there open source and cloud native journey!

A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.

🕵️‍♂️ Offensive Google framework.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

Extract endpoints from source files.

HTTP parameter discovery suite.

An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer.

massive SQL injection vulnerability scanner

UNIX-like reverse engineering framework and command-line toolset.

GitHub Project Resource List

ripgrep recursively searches directories for a regex pattern while respecting your gitignore

Frame profiler

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into account…

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

Low Level Bindings to Libev

📈 Display candlestick charts right into your terminal.

Everything about Apache Mesos

A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, POP3, POP3S, RTMP, RTMPS, RTSP…

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

🙃 A delightful community-driven (with 2,300+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python…

Extract endpoints from apk files.

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Linkable sandbox explorer