reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Official OWASP Top 10 Document Repository

Go source code analysis(zh-cn)

Build your own personal finance analytics using Plaid, Google Sheets and CircleCI.

A curated list for awesome cloud native tools, software and tutorials.

HTTPLeaks - All possible ways, a website can leak HTTP requests

A sorted and updated list of security wargame sites.

CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit

CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scripting) vulnerabilities on sites where injections are blocke…

Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️