This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

The modern Java bytecode editor

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

Dex to Java decompiler

Pure Python 3 MTProto API Telegram client library, for bots too!

A collection of my Semgrep rules to facilitate vulnerability research.

Testing TLS/SSL encryption anywhere on any port

Core Python libraries ported to MicroPython

A full-featured http proxy for node.js

CTF framework and exploit development library

Small and highly portable detection tests based on MITRE's ATT&CK.

A modern, C++-native, test framework for unit-tests, TDD and BDD - using C++14, C++17 and later (C++11 support is in v2.x branch, and C++03 on the Catch1.x branch)

High performant TCP server for rtl-sdr

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

Command-line JSON processor

The best tool for finding one gadget RCE in libc.so.6

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

aiogram is a modern and fully asynchronous framework for Telegram Bot API written in Python using asyncio

Provide powerful tools for seccomp analysis

A collection of scripts for assessing Microsoft Azure security

Arduino libraries, code and applications

Some setup scripts for security research tools.

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

user.js -- Firefox configuration hardening

Go Training Class Material :

Attack Surface Management Platform

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

Web Scraping Framework