⚡ Dynamically generated, customizable SVG that gives the appearance of typing and deleting text for use on your profile page, repositories, or website.

A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.

Docker image with SSL, Apache, and PHP 7.3. Can execute PHP files in the current directory.

SelfBot for Telegram

a recon tool that allows searching on URLs that are exposed via shortener services

Cloudflare scraper and cralwer written in Async, In-place library for HTTPX. Crawl website that has cloudflare enabled, easier than ever!

request new identity every X seconds interval using TOR client

A curated list of hacking environments where you can train your cyber skills legally and safely

LinkedIn Recon Tool

Collection of Facebook Bug Bounty Writeups

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

🎤⌨️ Acoustic keyboard eavesdropping

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

"Mongita is to MongoDB as SQLite is to SQL"

A tool for adding new lines to files, skipping duplicates

This repo includes ChatGPT prompt curation to use ChatGPT better.

Find subdomains with GPT, for free

A collection of awesome one-liner scripts especially for bug bounty tips.

All about bug bounty (bypasses, payloads, and etc)

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

A fast, simple, recursive content discovery tool written in Rust.

simple terminal UI for git commands

XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnerabilities.

The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre-configured with security tools for spidering, advanced web …

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

A cheat sheet that contains advanced queries for SQL Injection of all types.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

A list of useful payloads and bypass for Web Application Security and Pentest/CTF