It is just to share what my own learnings about Low Level Design. (LLD)

This repository is a collection of unique XSS (Cross-Site Scripting) payloads designed for security professionals and developers to use in web security testing. Each payload has been carefully sele…

The platform for building AI from enterprise data

Platform for building AI that can learn and answer questions over federated data.

OWASP Web Application Security Testing Checklist

Find, verify, and analyze leaked credentials

Drupal enumeration & exploitation tool

Automatic SQL injection and database takeover tool

A tool for reverse engineering Android apk files

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

A default credential scanner.

hydra

An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

Web application fuzzer

XRay is a tool for recon, mapping and OSINT gathering from public networks.

Attack Surface Management Platform

Note: Going through a full re-write of the tooling so the current versions in the repo do not work!

Prevents you from committing secrets and credentials into git repositories

Reconnaissance tool for GitHub organizations

Web path scanner

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

Fast subdomains enumeration tool for penetration testers

Knock Subdomain Scan

Covenant is a collaborative .NET C2 framework for red teamers.