libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
Little Bug Bounty & Hacking Tools⚔️
Red Teaming python-framework for testing chatbots and GenAI systems.
Lonkero - Wraps around your attack surface. Professional-grade scanner for real penetration testing. Fast. Modular. Rust.
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.
Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load :artificial_satellite: :crab:
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests…
Collection of (4000+) malicious rMQR Codes for Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more
MalQR is a collection of malicious QR Codes and Barcodes you can use to test the security of your scanners.
As a bug hunter, are your bug bounty reports getting rejected because you don't use a "malicious" Proof of Concept (PoC) app to exploit the …
Simple Malware Scanner written in python
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for ident…
The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
This repository updates latest Bug Bounty medium writeups every 10 minutes, https://readmedium.com/Medium_URL, https://archive.ph/Medium_URL…
Curated list of Meta (formerly Facebook) owned IT assets
OSINT tools and more but without API key
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or b…
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests a…
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and sec…
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an…
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
This repository contains a comprehensive collection of learning resources and notes that I've gathered on various topics, including cybersec…
Tools and methods that I personally use for Recon and Exploitations
A cli for cracking, testing vulnerabilities on Json Web Token(JWT)