Pinned Repositories
AllForOne
AM0N-Eye
apkleaks
Scanning APK file for URIs, endpoints & secrets.
audits-of-smartcontracts
Audits and findings by MiloTruck
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
FavFreak
Making Favicon.ico based Recon Great again !
learn365
This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection
writeups
demon1k's Repositories
demon1k/AllForOne
demon1k/AM0N-Eye
demon1k/audits-of-smartcontracts
Audits and findings by MiloTruck
demon1k/BugWriteups
for smartcontracts
demon1k/CVE-2023-32629-CVE-2023-2640---POC-Escalation
Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640
demon1k/ethereumbook
Mastering Ethereum, by Andreas M. Antonopoulos, Gavin Wood
demon1k/exploitation-course
Offensive Software Exploitation Course
demon1k/GAP-Burp-Extension
Burp Extensions
demon1k/gpt4
decentralising the Ai Industry, just some language model api's...
demon1k/HackerGPT
The official HackerGPT repository
demon1k/JSpector
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
demon1k/LEAKEY
LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and easy to add checks for new services.
demon1k/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
demon1k/Nuclei-bug-hunter
i will upload more templates here to share with the comunity.
demon1k/ollama
Get up and running with Llama 2 and other large language models locally
demon1k/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
demon1k/Portfolio
My portfolio
demon1k/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
demon1k/secureum-mind_map
Central Repository for the Epoch 0 coursework and quizzes. Contains all the content, cross-referenced and linked.
demon1k/slither
Static Analyzer for Solidity
demon1k/SmartContractHack_PoC
demon1k/sqlmap-osiryszzz
Automatic SQL injection and database takeover tool
demon1k/steam_browser_fullchain
demon1k/surf
Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable SSRF candidates.
demon1k/takeover
subdomain takeover
demon1k/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
demon1k/wrongsecrets
Vulnerable app with examples showing how to not use secrets
demon1k/x8
Hidden parameters discovery suite
demon1k/xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
demon1k/xss-writeups