n0lsecurity's Stars
arfrix/migration-roadmap
hAPI-hacker/Hacking-APIs
gdabah/win32k-bugs
Dump of win32k POCs for bugs I've found
neex/http2smugl
BishopFox/sliver
Adversary Emulation Framework
google/firing-range
NagliNagli/Shockwave-OSS
hahwul/dalfox
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
shieldfy/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
j00sean/SecBugs
Full disclosures for CVE ids, proofs of concept, exploits, 0day bugs and so on.
alexbieber/Bug_Bounty_writeups
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
dstotijn/hetty
An HTTP toolkit for security research.
michenriksen/aquatone
A Tool for Domain Flyovers
Emoe/kxss
This a adaption of tomnomnom's kxss tool with a different output format
google/google-ctf
Google CTF
TykTechnologies/tyk
Tyk Open Source API Gateway written in Go, supporting REST, GraphQL, TCP and gRPC protocols
vsec7/xkeys
Extract Sensitive Keys, Secret, Token Or Interested thing from source
burak0x01/findsecret
Find secret keys from JS file
NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
infosec-au/altdns
Generates permutations, alterations and mutations of subdomains and then resolves them
ahmad0x1/ARWAD
Advanced Reconnaissance and Web Application Discovery
AnubisSec/GodeInjection
gauravnarwani97/Trishul
Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vulnerabilities and teach how to exploit them.
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
pwntester/ysoserial.net
Deserialization payload generator for a variety of .NET formatters
assetnote/kiterunner
Contextual Content Discovery Tool
digininja/CeWL
CeWL is a Custom Word List Generator
Bo0oM/fuzz.txt
Potentially dangerous files
niutech/x-frame-bypass
Web Component extending IFrame to bypass X-Frame-Options: deny/sameorigin