Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.

A simple Physics engine in GoLang

a recon tool that allows searching on URLs that are exposed via shortener services

Script to audit GitHub Action Workflow files for potential vulnerabilities.

Paisa – Personal Finance Manager. https://paisa.fyi demo: https://demo.paisa.fyi

The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

This repository contains the WhatsApp proxy implementation for users to host their own proxy infrastructure to connect to WhatsApp for chat (VoIP is not currently supported)

Information about web3 security and programming tutorials/tools

This repository contains a mindmap on smart contract auditing methodology and different steps in how to audit a smart contract.

🎓 Path to a free self-taught education in Computer Science!

Local File Inclusion discovery and exploitation tool

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Awesome list of step by step techniques to achieve Remote Code Execution on various apps!

Mastering Ethereum, by Andreas M. Antonopoulos, Gavin Wood