XOR_'s starred repositories
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
wrongsecrets
Vulnerable app with examples showing how to not use secrets
command-injection-payload-list
🎯 Command Injection Payload List
open-redirect-payload-list
🎯 Open Redirect Payload List
directory-payload-list
🎯 Directory Payload List
SQLInjectionWiki
A wiki focusing on aggregating and documenting various SQL injection methods
Taranis-NG
Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains a user portal for simple self asset management. Taranis NG was developed by SK-CERT with a help from wide CSIRT community.
xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
csv-injection-payloads
🎯 CSV Injection Payloads
sql-injection-payload-list
🎯 SQL Injection Payload List
awesome-pentest
:computer:⚔️ A collection of awesome penetration testing resources, tools, and other shiny things.
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
DefconArsenalTools
Defcon Arsenal Tools (DArT) is a curation of tools presented at DEF CON, the world's largest hacker con.
PENTESTING-BIBLE
articles
dostoevsky-pentest-notes
Notes for taking the OSCP in 2097. Read in book form on GitBook
Wordpresscan
WPScan rewritten in Python + some WPSeku ideas
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
obsidian-markmind
A mind map, outline for obsidian,It support mobile and desktop