Stars
Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
Cybersecurity AI (CAI), the framework for AI Security
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
A lightweight GPT model, trained to discover subdomains.
SPA Route Scanner is a Chrome extension that scans Single Page Applications (SPAs) to find and list all internal routes. Instantly discover, search, and export front-end routes as JSON, CSV, or tex…
Burp suite extension which help you to find inconsistency between content-type header and body parsers
Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
A GUI Panel providing Worker subscriptions for VLESS, Trojan and Warp configs alongside chain proxies, offering full DNS, clean IP, Fragment, Warp, Warp pro and routing settings for cross-platform …
A tool to find and save recent writeups from specified URLs, with optional Telegram notifications.
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
A collection of subdomains to help ethical hackers and security researchers
A step-by-step Android penetration testing guide for beginners
Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.
A list of resources for those interested in getting started in bug bounties