Pinned Repositories
AFL
american fuzzy lop - a security-oriented fuzzer
Android-IMSI-Catcher-Detector
AIMSICD • Fight IMSI-Catcher, StingRay and silent SMS!
ATP-PowerShell-Scripts
Microsoft Signed PowerShell scripts
awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
Awesome-Asset-Discovery
List of Awesome Asset Discovery Resources
awesome-browser-exploit
awesome list of browser exploitation tutorials
awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
domdig
DOM XSS scanner for Single Page Applications
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
chr0ll0x0's Repositories
chr0ll0x0/domdig
DOM XSS scanner for Single Page Applications
chr0ll0x0/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
chr0ll0x0/AFL
american fuzzy lop - a security-oriented fuzzer
chr0ll0x0/ATP-PowerShell-Scripts
Microsoft Signed PowerShell scripts
chr0ll0x0/awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
chr0ll0x0/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
chr0ll0x0/awesome-privilege-escalation
A curated list of awesome privilege escalation
chr0ll0x0/Awesome-WAF
🔥 Everything awesome about web-application firewalls (WAF).
chr0ll0x0/Bug-bounty
Ressources for bug bounty hunting
chr0ll0x0/chr0ll0x0
chr0ll0x0/chr0ll0x0.github.io
chr0ll0x0/Collabfiltrator
Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
chr0ll0x0/cvelist
Pilot program for CVE submission through GitHub
chr0ll0x0/fahmifj.github.io
Personal blog
chr0ll0x0/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
chr0ll0x0/Free-WebSec-Class
Course materials for LOL's Free Web Security Class
chr0ll0x0/HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
chr0ll0x0/hacks
A collection of hacks and one-off scripts
chr0ll0x0/HTB
HackTheBox
chr0ll0x0/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
chr0ll0x0/osintgpt
An open-source intelligence (OSINT) analysis tool leveraging GPT-powered embeddings and vector search engines for efficient data processing
chr0ll0x0/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
chr0ll0x0/privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
chr0ll0x0/pwn_jenkins
Notes about attacking Jenkins servers
chr0ll0x0/PwnXSS
PwnXSS: Vulnerability (XSS) scanner exploit
chr0ll0x0/secDevLabs
A laboratory for learning secure web development in a practical manner.
chr0ll0x0/T00000000Lz
chr0ll0x0/the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
chr0ll0x0/top10webseclist
Top Ten Web Hacking Techniques List
chr0ll0x0/webapp-tech