LLM tool to deobfuscate android app and find any potential vulnerabilities in android apps and code.

RePacker is a utility designed to rebuild Cordova applications that incorporate RASP or other protective measures within their native code, resulting in a sanitized application devoid of any such s…

Android Reverse-Engineering Workbench for VS Code

The Network Execution Tool

Passively check for XSS character encodings

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!

A curated list of wordlists for bruteforcing and fuzzing

Real-world infosec wordlists, updated regularly

List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.

XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.

This extension will help you to detect GET/POST based XSS vulnerability in any website easily

List of periodically validated public DNS resolvers

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

This is my cherrytree for preparing for Pentester Academy - Certified Red Team Professional (CRTP)

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

Rockyou for web fuzzing

A list of public penetration test reports published by several consulting firms and academic security groups.

Heuristic Vulnerable Parameter Scanner