itsns

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Driving safety, simplicity, and standardization in vulnerability disclosure.

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Writeups for HacktheBox 'boot2root' machines

Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet

A repository with 3 tools for pwn'ing websites with .git repositories available

A curated list of amazingly awesome Burp Extensions

Solutions to a variety of Capture The Flag challenges from different competitions.

Repository of yara rules

Burp Bounty (Scan Check Builder in BApps Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

All CTF events

Write-ups

APT & CyberCriminal Campaign Collection

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

Open source education content for the researcher community

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

Stalk your Friends. Find their Instagram, FB and Twitter Profiles using Image Recognition and Reverse Image Search.

CMS (Content Management Systems) Detection and Exploitation suite

This script is intended to automate your reconnaissance process in an organized fashion

PwnAdventure3 Server

The GDPR Checklist

A Tool for Domain Flyovers

A collection of open source and commercial tools that aid in red team operations.

Cross Site Scripting ( XSS ) Vulnerability Payload List 🚀

Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002.

Automated Security Testing For REST API's

A cross-platform python based utility to download courses from udemy for personal offline use.