Carlos Villa Sánchez's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
difftastic
a structural diff that understands syntax 🟥🟩
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
super-linter
Combination of multiple linters to run as a GitHub Action or standalone
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
ysoserial.net
Deserialization payload generator for a variety of .NET formatters
hackthebox-writeups
Writeups for HacktheBox 'boot2root' machines
Nope-Proxy
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
XSS-Payloads
List of XSS Vectors/Payloads
bbrf-client
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
commonspeak2-wordlists
Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
recon-pipeline
An automated target reconnaissance pipeline.
mobileAudit
Django application that performs SAST and Malware Analysis for Android APKs