Extract URLs, paths, secrets, and other interesting bits from JavaScript

Tools related to RFC 9116 (security.txt)

Scripts for Sourcegraph search results. Useful for static analysis <3

Post Processor for Facebook Static Analysis Tools.

List of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland

A security focused static analysis tool for Android and Java applications.

Effortlessly and transparently add correctly styled citations to your markdown paper given only a URL

"Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.

My favorite C programming practices.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Hydra: a multithreaded site-crawling link checker in Python standard library

GitHub Action to scan your site for broken links so you can fix them 🔗

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

A library & tool for probing, parsing, and validating security.txt files as specified in RFC 9116 🚀📚

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Unpack the source code of React and other Webpacked apps!

The worker that serves Cloudflare's security.txt!

Takes a list of URLs and returns their HTTP response codes

Gatsby plugin that automatically creates security.txt for your site.

Parsing HTML at the command line

A modern and intuitive terminal-based text editor

Sourcetrail - free and open-source interactive source explorer

Embed any image into a prime number.

RunJS is a JavaScript playground for macOS, Windows and Linux. Write code with instant feedback and access to Node.js and browser APIs.