<button value=1>1's starred repositories
Tricks-Pentesting-Android-and-iOS-Applications
Some Useful Tricks for Pentesting Android and iOS Apps
servicenow
ServiceNow widge-simple-list misconfiguration scanner
graphql-wordlist
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
jolokia-exploitation-toolkit
jolokia-exploitation-toolkit
nuclei-wordfence-cve
The EXCLUSIVE Collection of 38,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.
ChineloDriving
A project repository to store documented experimentation on warwalking subject and look alikes, with affordable or popular hardware, code skills, creativity, open source tooling and friendship.
VhostFinder
Identify virtual hosts by similarity comparison
Dynamic-DTD
A python Flask app that generates dynamic DTDs for easy out-of-band data exfiltration.
Infinite-Storage-Glitch
ISG lets you use YouTube as cloud storage for ANY files, not just video
eternalnoobchallenges
This repository contains some challenges made to the understanding of how exploit some scenarios where there are security vulnerabilities and help to think about how to mitigate them =)
Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
PENTESTING-BIBLE
articles
CVE-2020-24186-wpDiscuz-7.0.4-RCE
wpDiscuz 7.0.4 Remote Code Execution
CVE-2021-26084_Confluence
Confluence Server Webwork OGNL injection
CVE-2022-26134
Confluence Pre-Auth Remote Code Execution via OGNL Injection (CVE-2022-26134)