Unleash the power of cloud

CloakQuest3r but without prompts

A Modern Framework for Bug Bounty Hunting

For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)

adding -L just to let it follow redirects

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Awesome list of techniques to achieve Remote Code Execution on various apps!

Curated list of public penetration test reports released by several consulting firms and academic security groups

A curated list of Smart Contract Security materials and resources For Researchers

Osmedeus demo workflow

WebSub/PubSubHubbub for WordPress

Top disclosed reports from HackerOne

A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms currently active on the Internet.

An Internet scale, blazing fast SSL/TLS scanner ( non-blocking, event-driven )

Subdomain takeover vulnerability checker

Small Python library that makes it easy to exploit race conditions in web apps with Requests.

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Web App bug hunting

Simple recon app in Rails

TryHackMe CTFs writeups, notes, dratfs, scrabbles, files and solutions.

Fast, easy and reliable testing for anything that runs in a browser.