A topic-centric list of HQ open datasets.

Hunt down social media accounts by username across social networks

A monitor of resources

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

E-mails, subdomains and names Harvester - OSINT

A next generation HTTP client for Python. 🦋

List of projects that provide terminal user interfaces

Directory/File, DNS and VHost busting tool written in Go

Fast passive subdomain enumeration tool.

Collection of methodology and test case for various web vulnerabilities.

YABS - a simple bash script to estimate Linux server performance using fio, iperf3, & Geekbench

Fetch all the URLs that the Wayback Machine knows about for a domain

Knock Subdomain Scan

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching

DNS Enumeration Script

Low bandwidth DoS tool. Slowloris rewrite in Python.

Mind-Maps of Several Things

Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into account…

completely ridiculous API (crAPI)

Fladder - A Simple Jellyfin frontend built on top of Flutter.

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

🔥 Real-time NVIDIA GPU dashboard

Because just a dark theme wasn't enough!

GitHub - Stealerium/Stealerium: Stealer + Clipper + Keylogger

Very basic DOS attack made with python

Knockpy GUI

Wake On Lan Telegram bot

The RethinkDNS resolver that deploys to Cloudflare Workers, Deno Deploy, Fastly, and Fly.io