rohancollab's Stars
ossu/computer-science
🎓 Path to a free self-taught education in Computer Science!
ByteByteGoHq/system-design-101
Explain complex systems using visuals and simple terms. Help you prepare for system design interviews.
jivoi/awesome-osint
:scream: A curated list of amazingly awesome OSINT
abhivaikar/howtheytest
A collection of public resources about how software companies test their software
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
infoslack/awesome-web-hacking
A list of web application security
vavkamil/awesome-bugbounty-tools
A curated list of various bug bounty tools
0xsyr0/Awesome-Cybersecurity-Handbooks
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
AabyssZG/SpringBoot-Scan
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
Dheerajmadhukar/4-ZERO-3
403/401 Bypass Methods + Bash Automation + Your Support ;)
andresriancho/enumerate-iam
Enumerate the permissions associated with AWS credential set
mazen160/secrets-patterns-db
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
netlas-io/netlas-cookbook
The goal of this guide is very simple - to teach anyone interested in cyber security, regardless of their knowledge level, how to make the most of Netlas.io.
owasp-noir/noir
Attack surface detector that identifies endpoints by static analysis
the-xentropy/samlists
Free, libre, effective, and data-driven wordlists for all!
Escape-Technologies/graphql-wordlist
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
barrracud4/image-upload-exploits
This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.
Micro0x00/Arsenal
Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty
g0ldencybersec/EasyEASM
Zero-dollar attack surface management tool
mschwager/route-detect
Find authentication (authn) and authorization (authz) security bugs in web application routes.
avito-tech/deepsecrets
Secrets scanner that understands code
redhuntlabs/KubeStalk
KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
ngalongc/AuthzAI
osamahamad/FUZZING
Collected fuzzing payloads from different resources
ajxchapman/ReServ
A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.
projectmonke/shortnameguesser
A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
PortSwigger/url-cheatsheet-data
This is the data that powers the PortSwigger URL validation bypass cheat sheet.
aaron-costello/ServiceNow-Schema
A shortlist of core ServiceNow tables.
jeetpal2007/extensor
Extensor is a command-line tool designed to help users quickly gather URLs containing specific file extensions from a given source (e.g., a waybackurls). It simplifies the process of collecting URLs associated with a particular file type, allowing users to specify an extension and retrieve relevant URLs efficiently.
reinhardt-pwn/Bypass-http
Automatized tool to bypass 403 and 401 HTTP status.