arzikamubarak

arachni

Web Application Security Scanner Framework

Generate-NFT

Generate-NFT是由B站UP主Philipjhc倾力打造的批量生成NFT的工具

host-hunter

探测只有绑定指定IP才能访问的域名,主要用于信息收集使用.

osmedeus

A Workflow Engine for Offensive Security

metabigor

OSINT tools and more but without API key

sdlookup

IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io

scripthunter

Tool to find JavaScript files on Websites

solidity-book

The Senior Solidity Engineer's Book is a resource meant to transform you into a Senior Solidity Engineer.

ninjasworkout

Vulnerable NodeJS Web Application

writeups

wtfjs

🤪 A list of funny and tricky JavaScript examples

redteamwiki

SMBSR

Lookup for interesting stuff in SMB shares

infosec-presentations

A repository of previous info-sec presentations I've presented.

igoat

OWASP iGoat - A Learning Tool for iOS App Pentesting and Security by Swaroop Yermalkar

awesome-list-of-secrets-in-environment-variables

🦄🔒 Awesome list of secrets in environment variables 🖥️

optionsbleed

angularjs-csti-scanner

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

AutoSQLi

An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.

bounty-targets

This project crawls Hackerone/Bugcrowd scopes hourly and dumps them into the bounty-targets-data repo

s3-tko

AWS S3 Bucket Finder.

cloud-cidr

AWS,AZURE,GOOGLE CLOUD IP CIDRS

Bheem

act

Run your GitHub Actions locally 🚀

TLS-poison

pyre-check

Performant type-checking for python.

intrigue-core

Discover Your Attack Surface!

hacks

A collection of hacks and one-off scripts

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

bounty-targets-data

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/etc) that are eligible for reports