Stars
Subdomains analysis and generation tool. Reveal the hidden!
The best design tools and plugins for everything 👉
Collection of scripts to test your website against vulnerabilities.
Useful "Match and Replace" burpsuite rules
Fast and customizable vulnerability scanner For JIRA written in Python
📦 Make security testing of K8s, Docker, and Containerd easier.
A cheatsheet for exploiting server-side SVG processors.
Pre-Built Vulnerable Environments Based on Docker-Compose
Tool for catching and logging different types of requests.
Just a simple SMTP server, implementation of @corpix smtpd library
A collection of all the data i could extract from 1 billion leaked credentials from internet.
Credentials gathering tool automating remote procdump and parse of lsass process.
This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
PoC exploit for the CVE-2019-15126 kr00k vulnerability
Open source SDR 4G software suite from Software Radio Systems (SRS) https://docs.srsran.com/projects/4g
A list of checks with tips for analyzing the security of Android applications
Socks proxy, and reverse socks server using powershell.
Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…