Diogo Silva's repositories
websitesVulnerableToSSTI
Simple websites vulnerable to Server Side Template Injections(SSTI)
api_wordlist
A wordlist of API names for web application assessments
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
PENTESTING-BIBLE
This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to arrive until the number of links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.
assetfinder
Find domains and subdomains related to a given domain
bounty-targets
This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/etc) hourly and dumps them into the bounty-targets-data repo
commonspeak
Content discovery wordlists generated using BigQuery
DataURLToolkit
Various tools for working with Data URLs, incl. web application (http://dataurl.net), Mac OS X GUI app, command line tool, Perl modules and Apache module.
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pymetasploit
A full-fledged msfrpc library for Metasploit framework.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
sink-discovery-test-app
Web app with several possible cases of reflection
SIRS2016
Encrypt your files when you're away with your smartphone, seamlessly! (your mom will never find your porn again)
zap-core-help
The help files for the OWASP ZAP core
zap-extensions
OWASP ZAP Add-ons
zaproxy-website
The source of OWASP ZAP website