A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Enumerate the permissions associated with AWS credential set

☠️ Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...

💻 Netcat client and server modules written in pure Javascript for Node.js.

Get the default network gateway, cross-platform.

🐙 Guides, papers, lecture, notebooks and resources for prompt engineering

🌐 Discover how to build and deploy a Google Chrome Extension for your Project!

SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.

Playground (and dump) of stuff I make or modify for the Flipper Zero

SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files

Nim is a statically typed compiled systems programming language. It combines successful concepts from mature languages like Python, Ada and Modula. Its design focuses on efficiency, expressiveness,…

A curated list of awesome Nim frameworks, libraries, software and resources.

OSINT tool for finding profiles by username

AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation

A GPT-empowered penetration testing tool

ScrapPY is a Python utility for scraping manuals, documents, and other sensitive PDFs to generate wordlists that can be utilized by offensive security tools to perform brute force, forced browsing,…

「🔑」A tool used to hunt down API key leaks in JS files and pages

Pull out bits of URLs provided on stdin

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Fast web fuzzer written in Go

All about bug bounty (bypasses, payloads, and etc)

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

A list of interesting payloads, tips and tricks for bug bounty hunters.

A small tool that extracts relative URLs from a file.

A command-line interface (CLI) based utility to recursively crawl webpages. It is designed to systematically browse webpages' URLs and follow links to discover linked webpages' URLs.

A next-generation crawling and spidering framework.

Gospider - Fast web spider written in Go

A golang utility to spider through a website searching for additional links.