carhackpils's Stars
FossifyOrg/Gallery
Browse your memories without any interruptions with this photo and video gallery
OWASP/vulnerable-container-hub
VULCONHUB provides access to files to build your own hands-on vulnerable container image to learn and practice security
6point6/vulnerable-docker-launcher
A Bash script to quickly start and stop docker containers.
SamP10/VulnerableDockerfile
A Vulnerable dockerfile for containerizing a university business.
Elymaro/rootscan
Speed up your pentest enumeration
crynomore/Postman2Burp
xnl-h4ck3r/GAP-Burp-Extension
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
chm0dx/creepyCrawler
OSINT tool to crawl a site and extract useful recon info.
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
OWASP/OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
Syslifters/sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
p0dalirius/smbclient-ng
smbclient-ng, a fast and user friendly way to interact with SMB shares.
StreamerApp/Streamer
App for Tracking Movies and TV shows on iOS and tvOS
pry0cc/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
nicanorflavier/ssl-certificate-chain-guide
Certificate chains are a key part of internet security. But what are they, and how do they work? This guide will explain it all in simple terms to make the concept clearer.
karthikuj/sasori
Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery.
kkkgo/vlmcsd
🔑Portable open-source KMS Emulator in C
intigriti/misconfig-mapper
Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!
elkokc/reflector
Burp plugin able to find reflected XSS on page in real-time while browsing on site
milanm/DevOps-Roadmap
DevOps Roadmap for 2024. with learning resources
OSTEsayed/OSTE-Meta-Scan
The OSTE meta scanner is a comprehensive web vulnerability scanner that combines multiple DAST scanners, including Nikto Scanner, ZAP, Nuclei, SkipFish, and Wapiti.
sshuttle/sshuttle
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
barry-ran/QtScrcpy
Android real-time display control software
SabyasachiRana/WebMap
WebMap-Nmap Web Dashboard and Reporting
LedoKun/secure-android-app-store
An Android app store infrastructure that relies on fully automated app analysis using off-device application analysis tools
UserCr4ig/Turbolehe
Turbolehe is a top agent for holehe osint script.
xsudoxx/OSCP
x1trap/websec-answers
Websec interview questions by tib3rius answered
mr-rizwan-syed/chomtesh
CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, making it a valuable asset for bug bounty hunters and penetration testers.
brcyrr/OSWP
#cheat sheet for OSWP