TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

This is a Kind of Dictionary which contains all kinds of Web Application and Network Security Vulnerabilities and other security concepts in an Alphabetical Order

OpenAI ChatGPT, GPT-3, GPT-4, DALL·E, Whisper API wrapper for Go

Damn Vulnerable Drone is an intentionally vulnerable drone hacking simulator based on the popular ArduPilot/MAVLink architecture, providing a realistic environment for hands-on drone hacking.

CrackQL is a GraphQL password brute-force and fuzzing utility.

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Host Header Vulnerability Scanner Automated Tool

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates when…

This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 solely and completely with "BurpSuite".

A fancy self-hosted monitoring tool

A script-based interactive container manager.

World's first Artificial Intelligence (XSS) Cross Site Scripting powered by Machine Learning with extreme fine-tuning designed to detect Reflected, Stored, DOM, and Blind (XSS) vulnerabilities in s…

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

Nightingale Docker for Pentesters is a comprehensive Dockerized environment tailored for penetration testing and vulnerability assessment. It comes preconfigured with all essential tools and utilit…

ROPDump is a command-line tool designed to analyze binary executables for potential Return-Oriented Programming (ROP) gadgets, buffer overflow vulnerabilities, and memory leaks.

Breaking Active Directory Security with 🍞

📲 Enumerate app information through the APK file

This repository is for tools, guides, cheatsheets, and anything else related to learning all different aspects of security.

Awesome cloud enumerator

🌒 Shell command obfuscation to avoid detection systems

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Elegant Scraper and Crawler Framework for Golang

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

A Slack bot phishing framework for Red Teaming exercises

A utility for detecting webpage inputs and conducting XSS scans.

Thief Raccoon is a tool designed for educational purposes to demonstrate how phishing attacks can be conducted on various operating systems. This tool is intended to raise awareness about cybersecu…

PIP-INTEL is an OSINT (Open Source Intelligence) tool designed using various open-source tools and pip packages.