nullarmor's Stars
matrix1001/heapinspect
🔍Heap analysis tool for CTF pwn.
cure53/XSSChallengeWiki
Welcome to the XSS Challenge Wiki!
vinta/awesome-python
An opinionated list of awesome Python frameworks, libraries, software and resources.
shellphish/how2heap
A repository for learning various heap exploitation techniques.
lanjelot/kb
All my infosec notes I have been building up over the years
pwndbg/pwndbg
Exploit Development and Reverse Engineering with GDB Made Easy
almandin/fuxploider
File upload vulnerability scanner and exploitation tool.
OpenSourcePentest/tools
Tools used for Penetration testing / Red Teaming
mantvydasb/RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
enaqx/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
devploit/XORpass
Encoder to bypass WAF filters using XOR operations.
nccgroup/GTFOBLookup
Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io), LOLBAS (https://github.com/LOLBAS-Project/LOLBAS), WADComs (https://wadcoms.github.io), and HijackLibs (https://hijacklibs.net/).
Telefonica/HomePWN
HomePwn - Swiss Army Knife for Pentesting of IoT Devices
rapid7/metasploit-framework
Metasploit Framework
OJ/gobuster
Directory/File, DNS and VHost busting tool written in Go
andrew-d/static-binaries
Various *nix tools built as statically-linked binaries
s0md3v/AwesomeXSS
Awesome XSS stuff
NationalSecurityAgency/ghidra
Ghidra is a software reverse engineering (SRE) framework
robertdavidgraham/masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
m0rtem/CloudFail
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files
trimstray/the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
NanXiao/strace-little-book
A little book which introduces strace.
dylanaraps/pure-bash-bible
📖 A collection of pure bash alternatives to external processes.
jlevy/the-art-of-command-line
Master the command line, in one page
aboul3la/Sublist3r
Fast subdomains enumeration tool for penetration testers
foospidy/payloads
Git All the Payloads! A collection of web attack payloads.
cyrus-and/fracker
PHP function tracker
RhinoSecurityLabs/Security-Research
Exploits written by the Rhino Security Labs team
ytisf/theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.