This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Interesting APT Report Collection And Some Special IOCs

Directory/File, DNS and VHost busting tool written in Go

A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to …

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

A list of public penetration test reports published by several consulting firms and academic security groups.

Random fake data generator written in go

J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications.

Go package for Ja3 TLS client and server hello fingerprints

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

My proof-of-concept exploits for the Linux kernel

Handshake Daemon & Full Node

Content-Type Research

JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

Randomized testing for Go

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Notes about attacking Jenkins servers

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

A collection of PHP backdoors. For educational or testing purposes only.

Prototype Pollution and useful Script Gadgets

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

A list of interesting payloads, tips and tricks for bug bounty hunters.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

A cross-platform asynchronous HTTP(S) proxy server in C#.

Git All the Payloads! A collection of web attack payloads.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

List of DNS violations by implementations, software and/or systems