CharlieNeva2Late777

CharlieNeva2Late777's Stars

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python60.3k1.8k014.5k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP57.2k1.9k26223.8k

• OWASP/CheatSheetSeries

  The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

  Language:Python27.7k5714483.9k

• OWASP/owasp-mastg

  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  Language:Python11.6k4221.1k2.3k

• projectdiscovery/subfinder

  Fast passive subdomain enumeration tool.

  Language:Go10k1554461.3k

• projectdiscovery/httpx

  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

  Language:Go7.5k79614822

• A-poc/RedTeam-Tools

  Tools and Techniques for Red Team / Penetration Testing

  5.9k974805

• EdOverflow/bugbounty-cheatsheet

  A list of interesting payloads, tips and tricks for bug bounty hunters.

  5.8k23951.5k

• daffainfo/AllAboutBugBounty

  All about bug bounty (bypasses, payloads, and etc)

  5.8k17061.1k

• EdOverflow/can-i-take-over-xyz

  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

  Language:Python4.8k127235708

• reddelexc/hackerone-reports

  Top disclosed reports from HackerOne

  Language:Python3.8k14610705

• christophetd/CloudFlair

  🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

  Language:Python2.6k6063358

• Az0x7/vulnerability-Checklist

  This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

  2.3k502547

• sehno/Bug-bounty

  Ressources for bug bounty hunting

  1.7k672556

• PortSwigger/turbo-intruder

  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

  Language:Kotlin1.5k35127207

• projectdiscovery/notify

  Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.

  Language:Go1.3k23100129

• GoSecure/dtd-finder

  List DTDs and generate XXE payloads using those local DTDs.

  Language:Kotlin601143106

• Krypteria/AtlasLdr

  Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls

  Language:C++34510159

• h3110w0r1d-y/BurpLoaderKeygen

  29431333

• frank-leitner/portswigger-websecurity-academy

  Writeups for PortSwigger WebSecurity Academy

  Language:Python2535295

• LucasFaudman/apkscan

  Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class, .smali, .zip, .aar, .arsc, .aab, .jadx.kts).

  Language:Python2246328

• PortSwigger/bambdas

  Bambdas collection for Burp Suite Professional and Community.

  Language:Java1948728

• netsecurity-as/subfuz

  A subdomain fuzzing tool

  Language:Python1466432

• ShadowByte1/XSS

  892019

• justmobilesec/Android-iOS-Cheat-Sheet

  70209

• ViktorMares/ultimate_discovery

  Ultimate Wordlist for Web Content Discovery

  651115

• albinowax/albinowaxUtils

  Language:Java13215