Sarapuce's Stars
newren/git-filter-repo
Quickly rewrite git repository history (filter-branch replacement)
projectdiscovery/katana
A next-generation crawling and spidering framework.
mxschmitt/action-tmate
Debug your GitHub Actions via SSH by using tmate to get access to the runner system itself.
P1sec/hermes-dec
A reverse engineering tool for decompiling and disassembling the React Native Hermes bytecode
dmunozv04/iSponsorBlockTV
SponsorBlock client for all YouTube TV clients.
indianajson/can-i-take-over-dns
"Can I take over DNS?" — a list of DNS providers and how to claim (sub)domains via missing hosted zones
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
deut-erium/RNGeesus
SMT based attacks on non cryptographic PRNGs
xnl-h4ck3r/waymore
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!
axelpey/natural-frontend
One-line for your Flask / FastAPI to generate a frontend 📺
praetorian-inc/gato
GitHub Actions Pipeline Enumeration and Attack Tool
getsops/sops
Simple and flexible tool for managing secrets
zoph-io/aws-security-survival-kit
Bare minimum AWS Security Alerting and Configuration
s0md3v/Arjun
HTTP parameter discovery suite.
the-xentropy/samlists
Free, libre, effective, and data-driven wordlists for all!
sec-it/ComPP
Company Passwords Profiler (aka ComPP) helps making a bruteforce wordlist for a targeted company.
Theodo-UK/OmniLog
Observability tool for your LLM prompts!
rohit-sonii/Escalating-Self-XSS-to-Account-Takeover
This repository contains complete source code for setting up the environment and exploit code for the vulnerability.
BishopFox/badPods
A collection of manifests that will create pods with elevated privileges.
theodo-group/awesome-security-automation
Awesome links to automate your cybersecurity checks
certsio/certsio
spotDL/spotify-downloader
Download your Spotify playlists and songs along with album art and metadata (from YouTube if a match is found).
PortSwigger/turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
dafthack/MSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
SpiderLabs/HostHunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
ThePorgs/Exegol
Fully featured and community-driven hacking environment
Mebus/cupp
Common User Passwords Profiler (CUPP)
dafthack/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Ekultek/WhatBreach
OSINT tool to find breached emails, databases, pastes, and relevant information
hacxx-underground/Files
Directory for Hacxx Underground files