Cyber Security ALL-IN-ONE Platform

Dicas e documentações sobre pentests para fins de estudo

Exploit Code, notes, and resources to accompany PortSwiggers' WebAcademy Labs.

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Fuzzing Wordlists

Burp HTTP history browser (BHHB) - A tool to view HTTP history exported from Burp Suite Community Edition

a burp extension creates dynamic payloads to reveal injection flaws(LFI, RCE, SQLi), generates user access tables to spot authentication/authorization issues, and copys Http requests as JavaScript code.

TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台，为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境，主要用于Web站点的功能测试、安全测试和安全评估。

jobTools

VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting, etc..

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Ethical Hacking Documentation Repository

Burpsuite extension writed in Python that looking for PII data (CPF) in passive requests, validate CPF and create issue.

Open Source Vulnerability Management Platform

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

Scripts to set up your own Android 📱 app hacking lab

A plugin that allows you execute python and get return to BurpSuite.

This repository is made to automate the setup and Installation of various tools and applications within a Windows Subsystem for Linux (WSL2) environment. This script installs a comprehensive toolkit for security and penetration testing tasks.

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate web form fuzzing, making it easier to identify potential vulnerabilities in web applications.