- Bangkok, Thailand
-
05:18
- 7h ahead - https://ctf-flag-generator.netlify.app/
Highlights
Lists (15)
Sort Name ascending (A-Z)
Stars
All about bug bounty (bypasses, payloads, and etc)
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
BloodyAD is an Active Directory Privilege Escalation Framework
A list of interesting payloads, tips and tricks for bug bounty hunters.
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
Subdomain and target enumeration tool built for offensive security testing
Fetch all the URLs that the Wayback Machine knows about for a domain
Detect and decode encoded strings, recursively.
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
Iconic font aggregator, collection, & patcher. 3,600+ icons, 50+ patched fonts: Hack, Source Code Pro, more. Glyph collections: Font Awesome, Material Design Icons, Octicons, & more
A fast tool to scan CRLF vulnerability written in Go
latest version of scanners for IIS short filename (8.3) disclosure vulnerability
PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
Fast and flexible image augmentation library. Paper about the library: https://www.mdpi.com/2078-2489/11/2/125
modest natural-language processing
An enterprise-class UI design language and React UI library
Simple HS256, HS384 & HS512 JWT token brute force cracker.
Automatic SQL injection and database takeover tool