Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)

Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.

A collection of full time roles in SWE, Quant, and PM for new grads.

Contains Company Wise Questions sorted based on Frequency and all time

Predict MT19937 PRNG, from preceding 624 generated numbers. There is a specialization for the "random" of Python standard library.

A steganography based shellcode hider to bypass AV

gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.

Drupal enumeration & exploitation tool

Converts PE into a shellcode

Portable Executable reversing tool with a friendly GUI

File formats dissections and more...

HTTP 403 bypass tool

Tool to bypass 403/40X response codes.

Generate diagrams from textual description

Want to become an Application Security Engineer? Here's a roadmap to help you get there.

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Free, libre, effective, and data-driven wordlists for all!

Firepwn is a tool made for testing the Security Rules of a firebase application.

sqlite3 driver for go using database/sql

Type safe SQL builder with code generation and automatic query result data mapping

Generate type-safe code from SQL