grac's repositories
Reflection-Tracer
Burp extension that finds parameter reflections in all responses
Language:HTML000
dirtymobile
Dirty Mobile is a vulnerable Android application.
Language:Java000
fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
Language:PHP000
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Language:PythonMIT000
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Language:PHPMIT000