Stars
Scripts and other tools to helps parse data or gather information
Automatically extracts API Keys from APK files
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
Automation for javascript recon in bug bounty.
This repo contains scripts i used while bug bounty.
The fastest path to AI-powered full stack observability, even for lean teams.
MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
Search an exploit in the local exploitdb database by its CVE
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
Nmap - the Network Mapper. Github mirror of official SVN repository.
In-depth attack surface mapping and asset discovery
Automated network asset, email, and social media profile discovery and cataloguing.
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
Source code of Visual Site Mapper Node.js version
A configurable set of panels that display various debug information about the current request/response.
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
This challenge is Inon Shkedy's 31 days API Security Tips.
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
A big list of Android Hackerone disclosed reports and other resources.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PoC scripts demonstrating the BlueBorne vulnerabilities
Ninja-Pandit / nuclei
Forked from projectdiscovery/nucleiNuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.