0xfabiof
InfoSec @ Dept of Computer Science FCUP | Senior Vulnerability Researcher @ BitSight
BitSightPorto
0xfabiof's Stars
spipm/Depix
Recovers passwords from pixelized screenshots
exelban/stats
macOS system monitor in your menu bar
RustScan/RustScan
🤖 The Modern Port Scanner 🤖
pi-hole/docker-pi-hole
Pi-hole in a docker container
Tib3rius/AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
dwisiswant0/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
assetnote/kiterunner
Contextual Content Discovery Tool
imran-parray/Mind-Maps
Mind-Maps of Several Things
berdav/CVE-2021-4034
CVE-2021-4034 1day
ustayready/fireprox
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
m4ll0k/BBTz
BBT - Bug Bounty Tools (examples💡)
wireghoul/graudit
grep rough audit - source code auditing tool
dolevf/Damn-Vulnerable-GraphQL-Application
Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.
1ndianl33t/Gf-Patterns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
facebook/mariana-trench
A security focused static analysis tool for Android and Java applications.
r3nt0n/bopscrk
Generate smart and powerful wordlists
gyf304/vmcli
A set of utilities (vmcli + vmctl) for macOS Virtualization.framework
dsopas/MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
assetnote/batchql
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
evets007/OSCP-Prep-cheatsheet
devoteam-cybertrust/burpcollaborator-docker
This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate. The objective is to simplify as much as possible the process of setting up and maintaining the server.
pumasecurity/serverless-prey
Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
initstring/pentest-methodology
Short checklists for penetration testing methodology
MichaelDim02/Narthex
Modular personalized dictionary generator.
ManasHarsh/Awesome-Web3-security
A curated list of resources for learning web3 hacking/Security
capt-meelo/MassMap
Combined port scanning w/ Masscan's speed & Nmap's scanning features.
KathanP19/protoscan
Prototype Pollution Scanner
GovTech-CSG/Autowasp
BurpSuite Extension: A one-stop pen testing checklist and logger tool
andreluis034/huawei-utility-page
A webpage with utility tools for huawei routers