Stars
My personal bug bounty toolkit.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Roadmap to becoming an Artificial Intelligence Expert in 2022
Allows you to talk while muted/deafened in Discord Voice Chat
A fuzzer for detecting open redirect vulnerabilities
Collection of content discovery wordlists in one wordlist.
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
Generate Email, Register for anything, Get the OTP/Link
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.
Burp extension to create target specific and tailored wordlist from burp history.
AppSec Payloads Arsenal for Pentration Tester and Bug Bounty Hunters
pFuzz helps us to bypass web application firewall by using different methods at the same time.
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
🔱 Powerfull XSS Scanning and Parameter analysis tool&gem
This a adaption of tomnomnom's kxss tool with a different output format
An step by step fuzzing tutorial. A GitHub Security Lab initiative
An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
This repository contains best profile readme's for your reference.
A repository for learning various heap exploitation techniques.
Script to test open Akamai ARL vulnerability.