JiffJavaScript library for building web-based applications that employ secure multi-party computation (MPC).
Stars: ✭ 131 (-59.94%)
Pentesting toolkit🏴☠️ Tools for pentesting, CTFs & wargames. 🏴☠️
Stars: ✭ 1,268 (+287.77%)
Blind-SSRFNuclei Templates to reproduce Cracking the lens's Research
Stars: ✭ 111 (-66.06%)
MinesweeperA Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Stars: ✭ 162 (-50.46%)
Openftp4A list of all FTP servers in IPv4 that allow anonymous logins.
Stars: ✭ 634 (+93.88%)
guardrailsguardrails.cs.virginia.edu
Stars: ✭ 18 (-94.5%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+317.13%)
Project TauroA Router WiFi key recovery/cracking tool with a twist.
Stars: ✭ 52 (-84.1%)
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (-39.14%)
Bunkerized Nginx🛡️ Make your web services secure by default !
Stars: ✭ 2,361 (+622.02%)
TwaA tiny web auditor with strong opinions.
Stars: ✭ 549 (+67.89%)
sqlinjection-training-appA simple PHP application to learn SQL Injection detection and exploitation techniques.
Stars: ✭ 56 (-82.87%)
ExploHuman and machine readable web vulnerability testing format
Stars: ✭ 114 (-65.14%)
Raven-StormRaven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
Stars: ✭ 235 (-28.13%)
ViewstateASP.NET View State Decoder
Stars: ✭ 77 (-76.45%)
Scant3rScanT3r - Web Security Scanner
Stars: ✭ 248 (-24.16%)
Prestashop Cve 2018 19126PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)
Stars: ✭ 37 (-88.69%)
diwaA Deliberately Insecure Web Application
Stars: ✭ 32 (-90.21%)
Corscanner Fast CORS misconfiguration vulnerabilities scanner🍻
Stars: ✭ 601 (+83.79%)
Jwt PwnSecurity Testing Scripts for JWT
Stars: ✭ 170 (-48.01%)
Githacker🕷️ A Git source leak exploit tool that restores the entire Git repository, including data from stash, for white-box auditing and analysis of developers' mind
Stars: ✭ 524 (+60.24%)
firecrackerStop half-done API specifications! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by validating your API specifications.
Stars: ✭ 438 (+33.94%)
BbreconPython library and CLI for the Bug Bounty Recon API
Stars: ✭ 169 (-48.32%)
shellsumA defense tool - detect web shells in local directories via md5sum
Stars: ✭ 30 (-90.83%)
Hacker101Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+3644.95%)
Virtual-HostModified Nuclei Templates Version to FUZZ Host Header
Stars: ✭ 38 (-88.38%)
Breach.twA service that can track data breaches like "Have I Been Pwned", but it is specific for Taiwan.
Stars: ✭ 144 (-55.96%)
WDIRGood resources about web security that I have read.
Stars: ✭ 14 (-95.72%)
C4Open IP cameras in IPv4
Stars: ✭ 123 (-62.39%)
CJ2018-Final-CTFCyber Jawara 2018 Final - Attack & Defense CTF services environments based on Docker.
Stars: ✭ 58 (-82.26%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (-65.14%)
Learning-Node.js-SecurityA Collection of articles, videos, blogs, talks and other materials on Node.js Security
Stars: ✭ 25 (-92.35%)
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+285.63%)
CtftoolsPersonal CTF Toolkit
Stars: ✭ 312 (-4.59%)
Log KillerClear all your logs in [linux/windows] servers 🛡️
Stars: ✭ 252 (-22.94%)
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: ✭ 10,212 (+3022.94%)
cyber-gymDeliberately vulnerable scripts for Web Security training
Stars: ✭ 19 (-94.19%)
Waf A MoleA guided mutation-based fuzzer for ML-based Web Application Firewalls
Stars: ✭ 51 (-84.4%)
Articles Translator📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.
Stars: ✭ 606 (+85.32%)
Awesome OcapAwesome Object Capabilities and Capability Security
Stars: ✭ 196 (-40.06%)
FavfreakMaking Favicon.ico based Recon Great again !
Stars: ✭ 564 (+72.48%)
Lighthouse SecurityRuns the default Google Lighthouse tests with additional security tests
Stars: ✭ 190 (-41.9%)
SherlockThis script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)
Stars: ✭ 36 (-88.99%)
requests-ip-rotatorA Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
Stars: ✭ 323 (-1.22%)
DomxssscannerDOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
Stars: ✭ 181 (-44.65%)