🕵️ OSINT Tools for gathering information and actions forensics 🕵️

A curated list of GPT agents for cybersecurity

18 Lessons, Get Started Building with Generative AI 🔗 https://microsoft.github.io/generative-ai-for-beginners/

A tool for checking if MFA is enabled on multiple Microsoft Services

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

Write fuzzer with rust

A curated list of free courses & certifications.

RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers (CSPs)

Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound

GPT-3 found hundreds of security vulnerabilities in this repo

A collection of bookmarks for penetration testers, bug bounty hunters, malware developers, reverse engineers and anyone who is just interested in infosec topics.

a drop-in replacement for Nmap powered by shodan.io

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

Interact with your documents using the power of GPT, 100% privately, no data leaks

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

List of regex for scraping secret API keys and juicy information.

So what is this all about? Yep, its an OSINT blog and a collection of OSINT resources and tools. Suggestions for new OSINT resources is always welcomed.

A GPT-empowered penetration testing tool

🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.

Orange Cyberdefense mindmaps

Check your WAF before an attacker does

A simple CLI IPTV player for M3U playlists with fuzzy finding in the terminal.

Your target's phone's front and back cameras📸 can be accessed by sending a link🔗.

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

List of XSS Vectors/Payloads

This repo contains code and examples to operationalize Azure review checklists.

Project for tracking publicly disclosed DLL Hijacking opportunities.

A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues