WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via [email protected]

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.

A command line base Udemy video downloader for all platform, created in go lang.

My Private Bug Hunting Methodology

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

A living document for penetration testing and offensive security.