Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

nodejsscan is a static security code scanner for Node.js applications.

Automated & Manual Wordlists provided by Assetnote

Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Fl…

A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.

Frida Boot 👢- A binary instrumentation workshop, with Frida, for beginners!

AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.

Damn Vulnerable Java (EE) Application

Obsidian PDF export layout in shadowdark style💀️

Electro-XSS , a buggy desktop app developed with the Electron framework.

Zola theme to get a tech startup up and running