YouGina's Stars
shieldfy/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
trickest/cve
Gather and update all available and newest CVEs with their PoC.
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
pry0cc/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
foospidy/payloads
Git All the Payloads! A collection of web attack payloads.
jaeles-project/jaeles
The Swiss Army knife for automated Web Application Testing
nsonaniya2010/SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
coinspect/learn-evm-attacks
Learn and contribute by exploring blockchain attacks in detail. Maintained by Coinspect smart contract audit team, renowned for their top-tier smart contract audit services.
irsdl/IIS-ShortName-Scanner
latest version of scanners for IIS short filename (8.3) disclosure vulnerability
random-robbie/My-Shodan-Scripts
Collection of Scripts for shodan searching stuff.
erev0s/VAmPI
Vulnerable REST API with OWASP top 10 vulnerabilities for security testing
marcinguy/betterscan-ce
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
filedescriptor/untrusted-types
bitquark/shortscan
An IIS short filename enumeration tool
abhi-r3v0/Adhrit
Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.
neex/http2smugl
optiv/mobile-nuclei-templates
Metalnem/sharpfuzz
AFL-based fuzz testing for .NET
jaeles-project/jaeles-signatures
Default signature for Jaeles Scanner
Static-Flow/gofingerprint
GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
BonJarber/SecUtils
Random utilities from my security projects that might be useful to others
kapytein/jsonp
jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
avlidienbrunn/bountydash
BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
Damian89/ffufPostprocessing
Golang tool which helps dropping the irrelevant entries from your ffuf result file.
ghsec/ghsec-jaeles-signatures
Signatures for jaeles scanner by @j3ssie
lucasmartinelle/Bounty-Dashboard
RandomRobbieBF/wordpress-plugin-list
Wordpress Plugins List for Bruteforcing.
bhataasim1/Nuclei-Templates
Downlaod all the nuclei Templates created from many Bug Hunters
finixbit/php-bytecode-security-framework
A high-level Python API for converting PHP files into a PHP Bytecode Pydantic model. It incorporates additional functions to assist in the analysis of PHP bytecode.