yield-c's starred repositories
Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
weird_proxies
Reverse proxies cheatsheet
BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
XXEinjector
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
GraphQLmap
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
nmap-bootstrap-xsl
A Nmap XSL implementation with Bootstrap.
AutoRepeater
Automated HTTP Request Repeating With Burp Suite
PenTestKit
Tools, scripts and tips useful during Penetration Testing engagements.
prototype-pollution-nsec18
Content released at NorthSec 2018 for my talk on prototype pollution
CollabOzark
CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
google-ctf-writeups
Writeup from Google Capture The Flag 2018 competition