A curated list of cybersecurity tools and resources.

A collection of awesome penetration testing resources, tools and other shiny things

A list of resources for those interested in getting started in bug bounties

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Hidden parameters discovery suite

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

Top disclosed reports from HackerOne

Collection of methodology and test case for various web vulnerabilities.

Mind-Maps of Several Things

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

A collection of PDF/books about the modern web application security and bug bounty.

Fetch all the URLs that the Wayback Machine knows about for a domain

This is a resource factory for anyone looking forward to starting bug hunting and would require guidance as a beginner.

This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.

Automated network asset, email, and social media profile discovery and cataloguing.

IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly found vulnerabilities in IoT devices.

A list of shodan filters