gitnepal's Stars
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
blaCCkHatHacEEkr/PENTESTING-BIBLE
articles
infosecn1nja/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
hakluke/how-to-exit-vim
Below are some simple methods for exiting vim.
s0md3v/Arjun
HTTP parameter discovery suite.
erebe/wstunnel
Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available
leebaird/discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
pwntester/ysoserial.net
Deserialization payload generator for a variety of .NET formatters
snoopysecurity/awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
christophetd/CloudFlair
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
JohnHammond/ctf-katana
This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.
Voorivex/pentest-guide
Penetration tests guide based on OWASP including test cases, resources and examples.
FriendsOfPHP/security-advisories
A database of PHP security advisories
s0md3v/be-a-hacker
roadmap for a self-taught hacker
iamj0ker/bypass-403
A simple script just made for self use for bypassing 403
h0mbre/Learning-C
A series of mini-projects used to learn C for beginners
hakluke/weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1
alphaSeclab/awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
roryg/ghostwriter
A simple AJAX driven Ghost theme.
backdoorhub/shell-backdoor-list
🎯 PHP / ASP - Shell Backdoor List 🎯
hash3liZer/Subrake
🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).
SecurityRiskAdvisors/cmd.jsp
A super small jsp webshell with file upload capabilities.
ONsec-Lab/scripts
Utils
x-o-r-r-o/PHP-Webshells-Collection
Most Wanted Private and Public PHP Web Shells Can Be Downloaded Here. (Educational Purpose Only)
manulqwerty/Evil-WinRAR-Gen
Generator of malicious Ace files for WinRAR < 5.70 beta 1
ahmetgurel/Pentest-Hints
Tips for Penetration Testing
HarshilPatel007/HackingLabs
A List Of Labs For People (Students) Who Want Learn OR Practice IT Security / Hacking / Penetration Testing In Ethical Way.
shalvah/cors-escape
cmthakur/kutto_kodalo
मेरो कुट्टो कोदालोहरु, हल्का खिया लागेको छ, होसियार है :bangbang: