yrkan

yrkan's Stars

• microsoft/playwright

  Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API.

  Language:TypeScript68k3.7k

• kurogai/100-redteam-projects

  Projects for security students

  Language:Python2.3k349

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python62.1k14.8k

• mandatoryprogrammer/xsshunter-express

  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!

  Language:JavaScript1.7k326

• laramies/theHarvester

  E-mails, subdomains and names Harvester - OSINT

  Language:Python11.7k2k

• lc/gau

  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

  Language:Go4.1k459

• projectdiscovery/naabu

  A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

  Language:Go4.9k563

• jakescheetz/OSCP

  High level cheatsheet that was designed to make checks on the OSCP more manageable. This repository however could also be used for your own studying or for evaluating test systems like on HackTheBox or TryHackMe. DM me via Twitter (@FindingUrPasswd) to request any specific additions to the content that you think would also be helpful!

  Language:Python9911

• KakatkarAkshay/kernel_xiaomi_pipa

  Language:C63

• hackthebox/Hackster

  HTB official Discord bot

  Language:Python5314

• btd/rollup-plugin-visualizer

  📈⚖️ Visuallize your bundle

  Language:TypeScript2k58

• vuejs/core

  🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  Language:TypeScript48.2k8.4k

• shabarkin/aws-enumerator

  The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.

  Language:Go18629

• shabarkin/CodeAllTheThings

  A list of threat sinks used in the manual security source code review for application security

  7016

• adeadfed/psql-golang-rce-poc

  Language:Go1

• vitejs/vite

  Next generation frontend tooling. It's fast!

  Language:TypeScript69.6k6.3k

• CyberSecurityUP/Cloud-Security-Attacks

  Azure and AWS Attacks

  1.1k239

• ElDavoo/wa-crypt-tools

  Manage WhatsApp .crypt12, .crypt14 and .crypt15 files.

  Language:Python65286

• hackvens/CoercedPotato

  Language:C23028

• moxie0/sslstrip

  A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.

  Language:Python1.9k433

• pyca/cryptography

  cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.

  Language:Python6.7k1.5k

• mandatoryprogrammer/xsshunter

  The XSS Hunter service - a portable version of XSSHunter.com

  Language:JavaScript1.5k301

• ffuf/ffuf

  Fast web fuzzer written in Go

  Language:Go12.9k1.3k

• codingo/NoSQLMap

  Automated NoSQL database enumeration and web application exploitation tool.

  Language:Python3k583

• infosec-au/altdns

  Generates permutations, alterations and mutations of subdomains and then resolves them

  Language:Python2.4k448

• brave/brave-browser

  Brave browser for Android, iOS, Linux, macOS, Windows.

  Language:JavaScript18.1k2.4k

• byt3bl33d3r/CrackMapExec

  A swiss army knife for pentesting networks

  Language:Python8.5k1.6k

• mubix/post-exploitation

  Post Exploitation Collection

  Language:C1.6k359

• sneakerhax/TTPs

  Red Team Tactics, Techniques, and Procedures

  Language:Dockerfile39590

• bettercap/bettercap

  The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

  Language:JavaScript17k1.5k