imnotcha0s's Stars
epinna/tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
epsylon/xsser
Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Andy53/ERC.Xdbg
An Xdbg Plugin of the ERC Library.
mav8557/Father
LD_PRELOAD rootkit
OpenAttackDefenseTools/ataka
Runs exploits, fast.
secgroup/flower
TCP flow analyzer with sugar for A/D CTF
Gallopsled/pwntools-tutorial
Tutorials for getting started with Pwntools
MatheuZSecurity/D3m0n1z3dShell
Demonized Shell is an Advanced Tool for persistence in linux.
M4DM0e/DirDar
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
apogiatzis/gdb-peda-pwndbg-gef
A script to automatically install Peda+pwndbg+GEF plugins for gdb
BoomerangDecompiler/boomerang
Boomerang Decompiler - Fighting the code-rot :)
RPISEC/MBE
Course materials for Modern Binary Exploitation by RPISEC
wrongbaud/hackaday-u
Course materials for hackaday.io Ghidra training
nnamon/linux-exploitation-course
A Course on Intermediate Level Linux Exploitation
Tzaoh/pwning
RE / Binary Exploitation Resources
bhassani/EternalBlueC
EternalBlue suite remade in C/C++ which includes: MS17-010 Exploit, EternalBlue vulnerability detector, DoublePulsar detector and DoublePulsar Shellcode & DLL uploader
Wh04m1001/CVE-2023-36874
cwinfosec/github_autopwn
Github Scraper For Static Code Analysis
rajeshmajumdar/BruteXSS
BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar Khan in CLI. I just redesigned it and made it GUI for more convienience.
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
sehno/Bug-bounty
Ressources for bug bounty hunting
rootkit-io/awesome-malware-development
Organized list of my malware development resources
cihan-ozcan/ApkHack-BackDoor
ApkHack-BackDoor is a shell script that simplifies the process of adding a backdoor to any Android APK file.
cofyc/argparse
Command-line arguments parsing library.
t3l3machus/Villain
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
h0mbre/Learning-C
A series of mini-projects used to learn C for beginners
harsh-bothra/SecurityExplained
SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
Cyb0r9/SocialBox
SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi