A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Fast web fuzzer written in Go

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Directory/File, DNS and VHost busting tool written in Go

Nikto web server scanner

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Nmap - the Network Mapper. Github mirror of official SVN repository.

A cat(1) clone with wings.

Damn Vulnerable Web Application (DVWA)

A list of resources for those interested in getting started in bug bounties

The labs for my Udemy course (https://www.udemy.com/course/intro-to-bug-bounty-by-nahamsec)

WebGoat is a deliberately insecure application

OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, s…

Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penet…

Multi-platform auto-proxy client, supporting Sing-box, X-ray, TUIC, Hysteria, Reality, Trojan, SSH etc. It’s an open-source, secure and ad-free.

🛰️✨ Free V2ray Configs , Updating Every 10 minutes.

The Bug Hunters Methodology

Main Web Site (Online Books)

NeoVim plugin simulating monkeytype.com

Performant, batteries-included completion plugin for Neovim

An extension for telescope.nvim that allows you to search emojis😃

Static analyzer for C/C++ based on the theory of Abstract Interpretation.

Official mirror of Blender

Personal Wiki for Vim

A collection of exercises for practicing what is taught in Genki: An Integrated Course in Elementary Japanese.

unicoder.vim: easy unicode characters in insert mode with abbreviations

qBittorrent BitTorrent client

C++ Library Manager for Windows, Linux, and MacOS

Go library for detecting and decoding various content front matter formats