Laravel 5.6 blog example project with Vue.js, Docker, Redis and Socket.io

Fast subdomains enumeration tool for penetration testers

A simple web crawler, written with bug bounties and pentesting in mind and some hacks for smart crawling

The easy-to-use and developer-friendly CMS

Scripted Linux Privilege Escalation for the CVE-2022-0847 "Dirty Pipe" vulnerability

A port of the Airspace theme by ThemeFisher to Jekyll.

🐳 Kali Linux desktop running in Docker on any operating system, in your web browser or a VNC client, with Kali top10 tools pre-installed.

Community curated list of templates for the nuclei engine to find a security vulnerability in application.

HackerOne Platform Documentation

Use bass to maximize your resolver count when using tools like massdns to resolve your target list. Add anywhere from 100 to 6k resolvers to your current resolver list & scale your target list

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Simple Bash script to automate Go language tools single user installation or even removal.

viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

A Tool for Domain Flyovers

Hacker101

A tool to fastly get all javascript sources/files