Seqrity's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
OneListForAll
Rockyou for web fuzzing
ds_store_exp
A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
fiddler-everywhere-enhance
Fiddler Everywhere is a secure and modern web debugging proxy for macOS, Windows, and Linux.
can-i-take-over-dns
"Can I take over DNS?" — a list of DNS providers and how to claim (sub)domains via missing hosted zones
BurpJSLinkFinder
Burp Extension for a passive scanning JS files for endpoint links.
smbclient-ng
smbclient-ng, a fast and user friendly way to interact with SMB shares.
Leaked-Credentials
how to look for Leaked Credentials !
fingerprintx
Standalone utility for service discovery on open ports!
Python-dsstore
A library for parsing .DS_Store files and extracting file names
graphql-cop
Security Auditor Utility for GraphQL APIs
GoLinkFinder
A fast and minimal JS endpoint extractor
domloggerpp
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
Awesome-Dorks
Dorks for Bug Bounty Hunting
EvenBetter
EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
CVE-2024-4358
Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
CVE-2023-48788
Fortinet FortiClient EMS SQL Injection
SensitiveDiscoverer
Sensitive Discoverer, a Burp extension to discovers sensitive information inside HTTP messages.
domlogger-configs
Useful configurations for the DomLogger++ extension
simple-scraper
SimpleScraper is an open-source tool designed to fetch and transform website content based on URLs provided via an API. Can be used to give LLMs access to live browsing capabilities.
uniqueurls
uniqueurls is a Python-based tool used for decluttering a list of URLs by performing string similarity comparisons. It generates a list of unique URLs by comparing the similarity of path components of URLs.