Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

OSINT Framework

HostHunter a recon tool for discovering hostnames using OSINT techniques.

This Burp extension extracts various data (path, parameter keys, parameter values, subdomains, etc.) from the sitemap. This data is used to create custom wordlists for directory/dns/parameter brute…

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

Attack Surface Management Platform

Репозиторий содержит список вопросов по наступальной безопасности.

Scripted Local Linux Enumeration & Privilege Escalation Checks

A reconnaissance framework for researching and investigating Telegram.

Information about web3 security and programming tutorials/tools

A curated list of resources for learning web3 hacking/Security

DeFi and Web3 roadmap for non-devs employees who need to dive into the world of decentralized technologies.

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

😱 A curated list of amazingly awesome OSINT

A collection of hacks and one-off scripts

🚀 Power Your World with AI - Explore, Extend, Empower.

CeWL is a Custom Word List Generator

This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.

The official gpt4free repository | various collection of powerful language models | o3 and deepseek r1, gpt-4.5

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

CORS Misconfiguration Scanner

Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.

best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

Collection of Cyber Threat Intelligence sources from the deep and dark web