bitquark / shortscan

An IIS short filename enumeration tool

hahwul / smugglex

Rust-powered HTTP Request Smuggling Scanner.

gmh5225 / awesome-game-security

awesome game security [Welcome to PR]

blacklanternsecurity / bbot

The recursive internet scanner for hackers. 🧡

trufflesecurity / force-push-scanner

Scan for secrets in dangling commits on GitHub using GH Archive data.

musana / CF-Hero

CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications

wagiro / BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro...

BishopFox / GitGot

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

edoardottt / missing-cve-nuclei-templates

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

dwisiswant0 / awesome-oneliner-bugbounty

A collection of awesome one-liner scripts especially for bug bounty tips.

spyboy-productions / CloakQuest3r

Open-source security research tool for identifying origin IP exposure of websites protected by Cloudflare and similar reverse proxy services.

achetronic / bbb

A super UX friendly CLI to make daily connections through H.Boundary easy to do

0xInfection / Awesome-WAF

Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥

deibit / cansina

Web Content Discovery Tool

zardus / wargame-nexus

A sorted and updated list of security wargame sites.

OWASP / OFFAT

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to...

blacktop / ipsw

iOS/macOS Research Swiss Army Knife

securego / gosec

Go security checker

onekey-sec / unblob

Extract files from any kind of container formats

Battelle / cantordust

Public repository for Cantordust Ghidra plugin.

pwndbg / pwndbg

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

ssl / ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

BlackFan / client-side-prototype-pollution

Prototype Pollution and useful Script Gadgets

rizemon / exploit-writing-for-oswe

Tips on how to write exploit scripts (faster!)

Moopinger / smugglefuzz

A rapid HTTP downgrade smuggling scanner written in Go.

mentebinaria / retoolkit

Reverse Engineer's Toolkit

openai / openai-security-bots

rfc-st / humble

A humble, and fast, security-oriented HTTP headers analyzer.

streaak / keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

p4-team / ctf

Ctf solutions from p4 team