An online request replication and TCP stream replay tool, ideal for real testing, performance testing, stability testing, stress testing, load testing, smoke testing, and more.

Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.

OpenHealth, AI Health Assistant | Powered by Your Data

Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"

A bot that trade Crypto Currency Futures on Binance using Supertrend strategy and CCXT.

A Heiken Ashi, SUperTrend Bot for Binance Futures

Python bot for trading Crypto with Supertrend and VWAP.

View HTTP/HTTPS requests made by any Linux program

Fast directory scanning and scraping tool

the LLM vulnerability scanner

Vulnerable app with examples showing how to not use secrets

Awesome Vulnerable Applications

A web security research tool for DOM testing

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…

Complete list of LPE exploits for Windows (starting from 2023)

A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)

Automatable GenAI Scripting

1337 Wordlists for Bug Bounty Hunting

Zero shot vulnerability discovery using LLMs

JNDIExploit or a ysoserial.

A proof-of-concept WordPress plugin fuzzer

Looks for parameters in urls

Smart context-based SSRF vulnerability scanner.

Combination of all my Resources, Links & Scripts

EDR & Antivirus Bypass to Gain Shell Access

DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.