phong1337

phong1337's Stars

• n8n-io/n8n

  Free and source-available fair-code licensed workflow automation tool. Easily automate tasks across different services.

  Language:TypeScript47.1k3641.8k7k

• toniblyx/my-arsenal-of-aws-security-tools

  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

  Language:Shell8.9k395331.5k

• realpython/materials

  Bonus materials, exercises, and example projects for our Python tutorials

  Language:HTML4.8k157595.3k

• Arachni/arachni

  Web Application Security Scanner Framework

  Language:Ruby3.8k2051k761

• arkadiyt/bounty-targets-data

  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

  3.1k2370583

• Qianlitp/crawlergo

  A powerful browser crawler for web vulnerability scanners

  Language:Go2.8k55133477

• kleiton0x00/Advanced-SQL-Injection-Cheatsheet

  A cheat sheet that contains advanced queries for SQL Injection of all types.

  2.8k590654

• Threezh1/JSFinder

  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

  Language:Python2.6k2225400

• JoyChou93/java-sec-code

  Java web common vulnerabilities and security code which is base on springboot and spring security

  Language:Java2.4k4429640

• zhzyker/dismap

  Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

  Language:Go2k2831268

• API-Security/APIKit

  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

  Language:Java1.9k2164166

• veo/vscan

  开源、轻量、快速、跨平台 的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)

  Language:Go1.5k3040241

• BlackFan/client-side-prototype-pollution

  Prototype Pollution and useful Script Gadgets

  1.4k427199

• maK-/parameth

  This tool can be used to brute discover GET and POST parameters

  Language:Python1.3k3812193

• Qianlitp/WatchAD

  AD Security Intrusion Detection System

  Language:Python1.3k4744296

• iangcarroll/cookiemonster

  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.

  Language:Go82211662

• nccgroup/sadcloud

  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure

  Language:HCL650141494

• aufzayed/bugbounty

  Bugbounty Resources

  53118699

• nahamsec/lazys3

  Language:Ruby523126120

• msrkp/PPScan

  Client Side Prototype Pollution Scanner

  Language:JavaScript50818662

• root-tanishq/userefuzz

  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer

  Language:Python37521464

• RhinoSecurityLabs/Cloud-Security-Research

  Cloud-related research releases from the Rhino Security Labs team.

  Language:Python35322167

• winsecurity/Offensive-Rust

  Language:Rust2797141

• geeknik/the-nuclei-templates

  Nuclei templates written by us.

  26413363

• geeksonsecurity/vuln-web-apps

  A curated list of vulnerable web applications.

  26112255

• usdAG/slipit

  Utility for creating ZipSlip archives

  Language:Python66015

• gwen001/gitlab-subdomains

  Find subdomains on GitLab.

  Language:Go6010110

• projectdiscovery/fuzzing-templates

  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.

  46587

• alex91ar/randomstringutils

  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.

  Language:C32107

• BrunoHalltari/CTF-Writeups

  Here i will post my writeups :)

  31300