zeroc00I

VirtualAndroidToBugHunt

Just steps that you have to follow in order to be able to do bughunt in app enviroment

google_free_proxy

A simple script to GET pages through 6 Google Servers without any authentication

reclame_aqui_scrapper

.

mssql_danger_functionalities_and_misconfigurations

navgix

navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities

titaniumDigger

bminossi.github.io

Bug-Bounty-Wordlists

test_github_action

VhostFinder

Identify virtual hosts by similarity comparison

bcheck-templates

Burp-Suite-Certified-Practitioner-Exam-Study

Burp Suite Certified Practitioner Exam Study

client_side_crypto

Just drafting something

CVE-2023-23504

CVE-2023-23504

CVE-2023-999999

CVE-2023-999999

generate_all_url_combinations.go

go-smuggler

A tool for detecting http request smuggling vulnerabilities.

google-ctf

Google CTF

graphql-wordlist

The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

http-garden

Differential testing and fuzzing of HTTP servers and proxies

jolokia-exploitation-toolkit

jolokia-exploitation-toolkit

NoSQLMap

Automated NoSQL database enumeration and web application exploitation tool.

nuclei-wordfence-cve

You just found a hidden gem 💎 This repo contains a massive amount (8000+) of WordPress related Nuclei templates. Updated daily!

poc_rce

poc_takeover

Postman_Leaked_Request_in_bash

sj

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

sysreptor

Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.

TLS-studies

Work in progress

twister

A very fast IP rotating HTTP proxy daemon that will rotate proxies based on target website instead of having a single queue.