mud1t's starred repositories

Stirling-PDF

#1 Locally hosted web application that allows you to perform various operations on PDF files

Language:JavaLicense:GPL-3.0Stargazers:28837Issues:101Issues:644

ipatool

Command-line tool that allows searching and downloading app packages (known as ipa files) from the iOS App Store

Awesome-GPT-Agents

A curated list of GPT agents for cybersecurity

arsenal

Arsenal is just a quick inventory and launcher for hacking programs

Language:PythonLicense:GPL-3.0Stargazers:3054Issues:62Issues:34

xsshunter-express

An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!

Language:JavaScriptLicense:MITStargazers:1407Issues:10Issues:26

jsluice

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Language:GoLicense:MITStargazers:1262Issues:13Issues:12

wrongsecrets

Vulnerable app with examples showing how to not use secrets

Language:JavaLicense:AGPL-3.0Stargazers:1169Issues:17Issues:235

ReconAIzer

A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

http-garden

Differential testing and fuzzing of HTTP servers and proxies

Language:PythonLicense:GPL-3.0Stargazers:622Issues:11Issues:35

noir

Attack surface detector that identifies endpoints by static analysis

Language:CrystalLicense:MITStargazers:518Issues:11Issues:84

http-request-smuggling

HTTP Request Smuggling Detection Tool

Language:PythonLicense:MITStargazers:452Issues:8Issues:3

APKDeepLens

Android security insights in full spectrum.

Language:PythonLicense:MITStargazers:409Issues:11Issues:8

403jump

HTTP 403 bypass tool

Language:GoLicense:MITStargazers:378Issues:2Issues:5

stride-gpt

An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.

Language:PythonLicense:MITStargazers:311Issues:12Issues:10

headerpwn

A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers

Language:GoLicense:MITStargazers:286Issues:5Issues:5

smugglefuzz

A rapid HTTP downgrade smuggling scanner written in Go.

Language:GoLicense:MITStargazers:234Issues:3Issues:7

domscan

Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.

sheye

Opensource assets and vulnerability scanning tool

My-Presentation-Slides

Collection's of Tech Talk that are presented by me :)

Portswigger_labs

This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's name, description, and my step-by-step solution, as well as any additional notes or observations.

python-for-awae

Python for AWAE (Advanced Web Attacks and Exploitation)

Language:PythonStargazers:82Issues:3Issues:0

My-CTF-Challenges

Challenges I wrote for various CTF competitions

Language:JavaScriptStargazers:38Issues:2Issues:0

ApkRecon

Scanning APK file for URIs, endpoints & secrets.

Language:ShellStargazers:36Issues:3Issues:0

BugBazaar

Android BugBazaar: Your mobile appsec playground to Explore, Exploit, Excel

burp-menu-level

一个用于修改右键插件菜单层级的Burpsuite插件。A simple BurpSuite extension to change extension context menu level.

pingback.transfer

Use WordPress pingback.ping to transfer files.

Language:PythonLicense:NOASSERTIONStargazers:17Issues:1Issues:0

xsshunter-go

XSSHunter written in Go with more notifications and features

Language:GoStargazers:15Issues:0Issues:0