Gather and update all available and newest CVEs with their PoC.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Web Fuzzing Box - Web 模糊测试字典与一些Payloads，主要包含：弱口令暴力破解、目录以及文件枚举、Web漏洞...

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Track the IP address and GPS location of the user's smartphone or PC and capture a picture of the target, along with device information.

Keyfinder🔑 is a tool that let you find keys while surfing the web!

These are my checklists which I use during my hunting.

🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

A Web Vulnerability Scanner and Patcher

Totally Insecure Web Application Project (TIWAP)

🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337

A living document for penetration testing and offensive security.

Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.

Python-Based Pentesting CLI Tool

A vast collection of security tools and resources curated by the community.