gja89p45utau84
Follow
Stars
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Python based scanner to find potential SSRF parameters
📘 OpenAPI/Swagger-generated API Reference Documentation
An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST),…
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Learn How to Create HTML/ZIP/PNG Polyglot Files!
.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
A Deep Learning Approach for Password Guessing (https://arxiv.org/abs/1709.00440)
Zero shot vulnerability discovery using LLMs
Web vulnerability scanner written in Python3
Automated Security Testing For REST API's
The Swiss Army knife for automated Web Application Testing
Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.
Free, simple, and intuitive online database diagram editor and SQL generator.
A list of open source web security scanners
Deobfuscate obfuscator.io, unminify and unpack bundled javascript
AirLLM 70B inference with single 4GB GPU
Fast passive subdomain enumeration tool.
A next-generation crawling and spidering framework.
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
Various tips & tricks
Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load 🛰️ 🦀