992 Open source projects that are alternatives of or similar to Can I Take Over Xyz

📝 A curated list of awesome HTML5 resources

Python library and CLI for the Bug Bounty Recon API

Kurukshetra - A framework for teaching secure coding by means of interactive problem solving.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

List of Russian words

My bucket list

🌩️ A list of awesome online development environments

A curated list of awesome scientific Python resources

🔓 A dynamic dictionary merger for successful dictionary based attacks.

Curated list: Resources for machine learning in Ruby

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Exploit Development, Reverse Engineering & Cryptography

Monitoring GitLab for sensitive data shared publicly

Awesome list of Draft.js resources

A collection of bookmarks, resources, articles for product designers.

An Awesome List of computer history videos, documentaries and related folklore

📄 A curated list of awesome developer personal websites

A list of software that turns your database into a REST/GraphQL API

A note-taking macOS app for penetration-testers.

Lists of JavaScript resources: tools, tutorials, starter projects, example code, etc.

A tool to automate the boring process of APK recon

🌅 Awesome things related with choo framework

List of articles related to deep learning applied to music

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

A curated list of awesome Dart frameworks, libraries, and software

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

lists: about my translate repo list 中文翻译列表 🇨🇳

A collection of awesome browser extensions for GitHub.

A list of resources on how/why to do a PhD

Ruby and Ruby on Rails bookmarks collection

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

A passive subdomain finder

CVE-2017-9506 - SSRF

A permutation generation tool written in golang

Listado de Chats de Comunidades en Telegram

Cross Origin Resource Sharing MisConfiguration Scanner

 A curated list of awesome applications, softwares, tools and shiny things for macOS.

The unofficial HackerOne disclosure Timeline

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

A curated list of the latest breakthroughs in AI by release date with a clear video explanation, link to a more in-depth article, and code

Network Security Vulnerability Manage

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

A curated list of MQTT related stuff. ✨

A python script that finds endpoints in JavaScript files

Pomf.se alternatives

Hawkeye filesystem analysis tool

A tool to check a bunch of URLs that contain reflecting params.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

List of ~275,000 English words

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

Find leaked emails with your passwords

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

Scanning APK file for URIs, endpoints & secrets.

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

A collection of all the data i could extract from 1 billion leaked credentials from internet.

A leaderboard of the top open-source e-commerce platforms. Promoting the bests for building reliable stores.

🎯 RFI/LFI Payload List

Tutorials and Things to Do while Hunting Vulnerability.