A cross-platform note-taking & target-tracking app for penetration testers.

DigitalPlat FreeDomain: Free Domain For Everyone

AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.

A collection of resources to study Solana smart contract security, auditing, and exploits.

This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filter everything accordingly.

📝 Algorithms and data structures implemented in JavaScript with explanations and links to further readings

A reverse whois tool based on Whoxy API.

Listen to Mechanical Keyboard Sounds with Every Keystroke - It's Fast

Tool to find common vulnerabilities in cryptographic public keys

Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class, .smali, .zip, .aar, .arsc, .aab, .jadx.kts).

List of Directory Traversal/LFI Payloads Scraped from the Internet

SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty

Community curated list of nuclei templates for finding "unknown" security vulnerabilities.

POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.

A modern tool written in Python that automates your xss findings.

Payload for bug bounty

ShodanX is a tool to gather information of targets using shodan dorks⚡.

Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. The tool offers concurrent scanning, allowing users to define …

This Repositories contains list of One Liners with Descriptions and Installation requirements

Collection of methodology and test case for various web vulnerabilities.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

This tool for Termux Beginner users .

IPCam-Scanner Versi 2

a drop-in replacement for Nmap powered by shodan.io

A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.