mtisec's Stars
chubin/cheat.sh
the only cheat sheet you need
httpie/cli
🥧 HTTPie CLI — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more.
sharkdp/hyperfine
A command-line benchmarking tool
sxyazi/yazi
💥 Blazing fast terminal file manager written in Rust, based on async I/O.
fathyb/carbonyl
Chromium running inside your terminal
RustScan/RustScan
🤖 The Modern Port Scanner 🤖
s0md3v/XSStrike
Most advanced XSS scanner.
Unleash/unleash
Open-source feature management solution built for developers.
mikeroyal/Self-Hosting-Guide
Self-Hosting Guide. Learn all about locally hosting (on premises & private web servers) and managing software applications by yourself or your organization. Including Cloud, LLMs, WireGuard, Automation, Home Assistant, and Networking.
aboul3la/Sublist3r
Fast subdomains enumeration tool for penetration testers
s0md3v/Arjun
HTTP parameter discovery suite.
hahwul/dalfox
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
projectdiscovery/interactsh
An OOB interaction gathering server and client library
calebstewart/pwncat
Fancy reverse and bind shell handler
madeye/proxydroid
Global Proxy for Android
BishopFox/cloudfox
Automating situational awareness for cloud penetration tests.
shekyan/slowhttptest
Application Layer DoS attack simulator
dafthack/MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
nemesida-waf/waf-bypass
Check your WAF before an attacker does
jstkdng/ueberzugpp
Drop in replacement for ueberzug written in C++
chiefonboarding/ChiefOnboarding
Free and open-source employee onboarding platform. Onboard new hires through Slack or the web portal.
stamparm/identYwaf
Blind WAF identification tool
Brum3ns/firefly
Black box fuzzer for web applications
volkandindar/agartha
A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations, while also converting HTTP requests to JavaScript for enhanced XSS exploitation.
JamieFarrelly/Popular-Site-Subdomains
A list of subdomains for some of the most popular sites on the internet
Hipapheralkus/AIAIAI
An Incredibly Annoying, Insufferable Authentication Implementation
mahyarx/pentest-tools
a collection of best pentest resources
foreseon/Subruster
Fast, compact and all-around subdomain enumeration tool written in Rust
its-sarin/HTBtui
HTBtui is a TUI (terminal user interface) client built with Textual for interacting with the Hack the Box api
garthk/unzip
unzip, in a Docker container