askifyouneed

askifyouneed's Stars

• OhShINT/ohshint.gitbook.io

  So what is this all about? Yep, its an OSINT blog and a collection of OSINT resources and tools. Suggestions for new OSINT resources is always welcomed.

  Language:HTML74883

• eu-digital-green-certificates/dgca-issuance-web

  Repository for the dgca issuance web app.

  Language:TypeScript107135

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.3k2.6k

• infoslack/awesome-web-hacking

  A list of web application security

  5.8k1.2k

• wtsxDev/Penetration-Testing

  List of awesome penetration testing resources, tools and other shiny things

  2.4k701

• Hack-with-Github/Awesome-Hacking

  A collection of various awesome lists for hackers, pentesters and security researchers

  85.4k9k

• devanshbatham/Awesome-Bugbounty-Writeups

  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

  Language:Python4.7k1k

• trimstray/the-book-of-secret-knowledge

  A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

  148k9.6k

• Voorivex/pentest-guide

  Penetration tests guide based on OWASP including test cases, resources and examples.

  2.5k547

• numirias/security

  Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

  864161

• nu11secur1ty/CVE-mitre

  https://cve.mitre.org/

  Language:C12552

• worawit/CVE-2021-3156

  Sudo Baron Samedit Exploit

  Language:Python737168

• nfsec/linux-backdoors

  Simple linux backdoors and hiding techniques

  Language:Shell3

• calebshortt/opensshd_user_enumeration

  OpenSSHD 7.2p2 - User Enumeration: CVE 2016-6210

  Language:Python33

• KINGSABRI/godofwar

  GodOfWar - Malicious Java WAR builder with built-in payloads

  Language:Java12035

• GrrrDog/weird_proxies

  Reverse proxies cheatsheet

  Language:Python1.8k207

• bl4de/dictionaries

  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks

  Language:Python23275

• GrrrDog/Java-Deserialization-Cheat-Sheet

  The cheat sheet about Java Deserialization vulnerabilities

  3k599

• BishopFox/GadgetProbe

  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

  Language:Java58592

• frohoff/ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  Language:Java7.8k1.8k

• jakejarvis/awesome-shodan-queries

  🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

  5.8k867

• DominicBreuker/pspy

  Monitor linux processes without root permissions

  Language:Go5k513

• mishmashclone/carlospolop-privilege-escalation-awesome-scripts-suite

  https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite

  Language:C#354

• blaCCkHatHacEEkr/PENTESTING-BIBLE

  articles

  12.9k2.3k

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python61.3k14.7k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP58.4k23.9k