vishal-vishal's Stars
gmelodie/awesome-wordlists
A curated list wordlists for bruteforcing and fuzzing
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
SafeBreach-Labs/HRS
devanshbatham/ParamSpider
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
SpiderLabs/CryptOMG
CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
commixproject/commix-testbed
A collection of web pages, vulnerable to command injection flaws.
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
xillwillx/skiptracer
OSINT python webscaping framework
RhinoSecurityLabs/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
client9/libinjection
SQL / SQLI tokenizer parser analyzer
enjoiz/XXEinjector
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
s0md3v/Silver
Mass scan IPs for vulnerable services
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
ehsahil/recon-my-way
This repository created for personal use and added tools from my latest blog post.