🔍 Explore a comprehensive collection of cybersecurity interview questions and answers, designed for all positions in the field.

Repository for my GitBook (CTF writeups / vuln research / bugbounty)

在Java安全学习过程中的笔记和代码

A cli for cracking, testing vulnerabilities on Json Web Token(JWT)

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.

▲ SEO Middleware • Web Analytics • Web CRON • WebSec • HTTP & SNMP Monitoring • ostr.io is a unified web-services platform

writeups/solvers for CTF challenges

Chrome extension to help in identify SPAs

🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.

🤖 Telegram Bot written on Python for basic web-app analysis.

CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).

Confidential Project: Under Development

The Clara S. Traversal's classroom is an intermediate level web security challenge (black box) where you will have to exploit both client-side and server-side vulnerability in order to change a student grade. Can you hack the class and get in? Access teacher only features? Do even more than the teacher can? Good luck!

A tech enumeration toolkit focused on 404 Not found pages.

🎯 Directory Payload List

🎯 CSV Injection Payloads

Web Content Discovery Tool

Content Discovery/Directory Brute-forcing using Python3

Find web directories without bruteforce