Srinivas11789

PcapXray

:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

urlRecon

:pencil: urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

AlgorithmNuggets

:eyes::blue_book::pencil::thought_balloon::blue_book: Research, Study and Learning of Algorithms, ProblemSolving, ProgrammingLanguages

SecurityNuggets

:eyes::blue_book::pencil::thought_balloon::blue_book: Computer Security Nuggets -- > Ctf writeups + Explore, Research, Study, Fun and Learning Security

sql-injection-payload-list

🎯 SQL Injection Payload List

AUCTF-2020

awesome-api-security

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

awesome-appsec

A curated list of resources for learning about application security

Awesome-Bugbounty-Writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

BenchmarkJava

OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploit

big-list-of-naughty-strings

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

BountyTricks

certbot

Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.

codeql

frida

Clone this repo to build Frida

hacks

A collection of hacks and one-off scripts

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

nginx-admins-handbook

How to improve NGINX performance, security, and other important things.

nmapAutomator

A script that you can run in the background!

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

pentest-guide

Penetration tests guide based on OWASP including test cases, resources and examples.

privateGPT

Interact privately with your documents using the power of GPT, 100% privately, no data leaks

static-analysis

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

tbhm

The Bug Hunters Methodology

trAIner

vault

A tool for managing secrets.

vscode-codeql-starter

Starter workspace to use with the CodeQL extension for Visual Studio Code.

webperf-snippets

⚡️ 💾 Web Performance Snippets

xsshunter-express

An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!