Lists (24)
android pentest
api pentesting
burpsuite utilized
Bypass (4xx)
checklists, methodologies
code review, devsecops
general stuffs
ios pentest
node stuffs
payloads
pentest note taking apps
recon (application)
recon (assets)
recon (dorks, queries)
recon (javascripts)
vulnerable android apps
vulnerable ios apps
vulnerable [web] apps
vulns (open redirect)
vulns (sqli)
vulns (ssrf)
vulns (xss)
wlists
writeups & edu
Stars
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
Gather and update all available and newest CVEs with their PoC.
A Security Tool for Bug Bounty, Pentest and Red Teaming.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
A collection of android Exploits and Hacks
Repository for information about 0-days exploited in-the-wild.
These are my checklists which I use during my hunting.
Sticky notes for pentesting, bug bounty, CTF.
OWASP Foundation Project Web Repository for Secure Coding Practices Quick-reference Guide