pikpikcu

changedetection.io

The best and simplest free open source web page change detection, website watcher, restock monitor and notification service. Restock Monitor, change detection. Designed for simplicity - Simply monitor which websites had a text change for free. Free Open source web page change detection, Website defacement monitoring, Price change notification

SafeLine

A simple, lightweight, and secure WAF. Developed based on Nginx and connected as a reverse proxy. Protect your web applications from common attacks and exploits.

ModSecurity

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.

freegpt-webui

GPT 3.5/4 with a Chat Web UI. No API key required.

cerebro

ShuiZe_0x727

信息收集自动化工具

xunfeng

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

pgrok

Poor man's ngrok - a multi-tenant HTTP/TCP reverse tunnel solution through SSH remote port forwarding

malicious-pdf

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

quay

Build, Store, and Distribute your Applications and Containers

BBScan

A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers

FBI-tools

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

cloud_enum

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Carbon

🚴 A declarative library for building component-based user interfaces in UITableView and UICollectionView.

payload_dumper

Android OTA payload dumper

GooFuzz

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

jsluice

Extract URLs, paths, secrets, and other interesting bits from JavaScript

kaguya

A ChatGPT plugin that allows you to load and edit your local files in a controlled way, as well as run any Python, JavaScript, and bash script.

webanalyze

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

SZhe_Scan

碎遮SZhe_Scan Web漏洞扫描器，基于python Flask框架，对输入的域名/IP进行全面的信息搜集，漏洞扫描，可自主添加POC

UpscalerJS

Enhance Images with Javascript and AI. Increase resolution, retouch, denoise, and more. Open Source, Browser & Node Compatible, MIT License.

Fofa-hack

非付费会员，fofa数据采集工具

Zehef

Zehef is an osint tool to track emails

Artemis

A modular vulnerability scanner with automatic report generation capabilities.

cerbrutus

Network brute force tool, written in Python. Faster than other existing solutions (including the main leader in the network brute force market).

cut-cdn

✂️ Removing CDN IPs from the list of IP addresses

HBSQLI

Automated Tool for Testing Header Based Blind SQL Injection

Scavenger

Burp extension to create target specific and tailored wordlist from burp history.

BeVigil-OSINT-CLI

bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API.

FastCVE

FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)