Asset inventory of over 800 public bug bounty programs.

fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.

Extracting OSINT Insights from 15TB of GitHub Event Logs

Monitoring the Cloud Landscape

Handy scripts and one-liners to make life easier

Real-world infosec wordlists, updated regularly

Automated compromise detection of the world's most popular packages

Combine words from two wordlist files and concatenate them with an optional delimiter

List all public repositories for (valid) GitHub usernames

security.txt collection of most popular world-wide domains

A proposed standard that allows websites to define security policies.

Github Action for Trickest Workflows

Execute Trickest workflows right from your terminal

The most exhaustive list of reliable DNS resolvers.

Automated privilege escalation of the world's most popular Docker images.

🥧 HTTPie CLI — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more.

Archive of Potential Insider Threats

Find CVE PoCs on GitHub

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

KubeConfig Context Switcher

Building blocks for charmbracelet/lipgloss 👾

Gather and update all available and newest CVEs with their PoC.

Fast web fuzzer written in Go

Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.

Tool for shell commands execution, visualization and alerting. Configured with a simple YAML file.

Filter and enrich a list of subdomains by level

Generate tens of thousands of subdomain combinations in a matter of seconds

Command line util for grep.app - Search across a half million git repos