hisxo's Stars
Significant-Gravitas/AutoGPT
AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.
langchain-ai/langchain
🦜🔗 Build context-aware reasoning applications
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
zylon-ai/private-gpt
Interact with your documents using the power of GPT, 100% privately, no data leaks
langflow-ai/langflow
Langflow is a low-code app builder for RAG and multi-agent AI applications. It’s Python-based and agnostic to any model, API, or database.
FlowiseAI/Flowise
Drag & drop UI to build your customized LLM flow
Mintplex-Labs/anything-llm
The all-in-one Desktop & Docker AI application with built-in RAG, AI agents, and more.
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
owasp-amass/amass
In-depth attack surface mapping and asset discovery
OJ/gobuster
Directory/File, DNS and VHost busting tool written in Go
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
blacklanternsecurity/bbot
A recursive internet scanner for hackers.
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
infosec-au/altdns
Generates permutations, alterations and mutations of subdomains and then resolves them
assetnote/wordlists
Automated & Manual Wordlists provided by Assetnote
yeswehack/vulnerable-code-snippets
Twitter vulnerable snippets
hisxo/JSpector
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
BitTheByte/Monitorizer
Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
su77ungr/CASALIOY
♾️ toolkit for air-gapped LLMs on consumer-grade hardware
gwen001/DataExtractor
A Burp Suite extension to extract datas from source code while browsing.
AethliosIK/reset-tolkien
Unsecure time-based secret exploitation and Sandwich attack implementation Resources
Sentdex/OpenAssistant_API_Pythia_12B
Creating and Using an Open Assistant API locally (Pythia 12B GPT model)
yeswehack/YesWeBurp
YesWeHack Api Extension for Burp
redhuntlabs/Log4JHunt
An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
lucasmartinelle/Bounty-Dashboard
GKNSB/Lepus
Subdomain finder
Serizao/pwndoc
Pentest Report Generator