zesty
Follow
Stars
🌻 Flexible and fast ZSH plugin manager
Useful configurations for the DomLogger++ extension
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and easy to add checks for new services.
mallaagency / w3af-python3
Forked from codders/w3af-python3w3af: web application attack and audit framework, the open source web vulnerability scanner.
codders / w3af-python3
Forked from andresriancho/w3afw3af: web application attack and audit framework, the open source web vulnerability scanner.
Prototype Pollution and useful Script Gadgets
API documentation for the Amazing Marvin productivity tool
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatab…
Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available
E-mails, subdomains and names Harvester - OSINT
Elastic(search²) is a small tool for discovering and analyzing Elasticsearch hosts for leaks and exposures from various search engines.
Unofficial documentation for the great tool Param Miner
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
An XSS exploitation command-line interface and payload generator.
Fast and configurable TLS grabber focused on TLS based data collection.
Easily gather all routes related to a NextJs application through parsing of _buildManifest.js