syr0x's Stars
shieldfy/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
stanfordnlp/dspy
DSPy: The framework for programming—not prompting—language models
Cinnamon/kotaemon
An open-source RAG-based tool for chatting with your documents.
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
a16z-infra/ai-town
A MIT-licensed, deployable starter kit for building and customizing your own version of AI town - a virtual town where AI characters live, chat and socialize.
SciPhi-AI/R2R
The most advanced AI retrieval system. Containerized, Retrieval-Augmented Generation (RAG) with a RESTful API.
arainho/awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
httpie/desktop
🚀 HTTPie Desktop — cross-platform API testing client for humans. Painlessly test REST, GraphQL, and HTTP APIs.
six2dez/OneListForAll
Rockyou for web fuzzing
osintbrazuca/osint-brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
tanprathan/OWASP-Testing-Checklist
OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.
j4k0xb/webcrack
Deobfuscate obfuscator.io, unminify and unpack bundled javascript
TalEliyahu/awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attacks
wssheldon/osintui
OSINT from your favorite services in a friendly terminal user interface - integrations for Virustotal, Shodan, and Censys
ViRb3/magisk-frida
🔐 Run frida-server on boot with Magisk, always up-to-date
zeroc00I/AllVideoPocsFromHackerOne
This script grab public report from hacker one and make some folders with poc videos
xsleaks/xsleaks
A collection of browser-based side channel attack vectors.
pop3ret/AWSome-Pentesting
My cheatsheet notes to pentest AWS infrastructure
MattKeeley/Spoofy
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
ps1337/reinschauer
it is very good
fkasler/cuddlephish
Weaponized Browser-in-the-Middle (BitM) for Penetration Testers
Bandit-HaxUnit/haxunit
PortSwigger/bypass-bot-detection
Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
GainSec/GoldenNuggets-1
Burp Extension for easily creating Wordlists
iamsarvagyaa/AndroidSecNotes
An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentesters, reverse engineer, and redteamers.
RESETHACKER-COMMUNITY/Pentesting-Bugbounty
Bringing infosec community, group and leaders together that solve community challenges, problems, create cultural and provide value to Infosec community.
valeriyshevchenko90/WhereToGo
WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find entry points to the organization data.
samogod/bugradar
Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.
manifest-cyber/aibom
A community wiki for all things AI/ML bill of materials (MLBOM, AIBOM) and transparency into AI/ML models.
aibom-squad/AIBOM-Tiger-Team
Repository for on-going work as part of the AIBOM Tiger Team effort.