This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

This repo contains some Amsi Bypass methods i found on different Blog Posts.

The recursive internet scanner for hackers. 🧡

Unpack a JavaScript Source Map back into filesystem structure

A projectdiscovery driven attack surface monitoring bot powered by axiom

Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Convolutional neural network for analyzing pentest screenshots

A highly extensible Git implementation in pure Go.

Real-world infosec wordlists, updated regularly

This is a python wrapper around the amazing KNOXSS API by Brute Logic

A tool to fastly get all javascript sources/files

Find, verify, and analyze leaked credentials

🔭 Collection of regexp pattern for security passive scanning

A collection of regexes for every possbile use

🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.

A Linux enumeration script for Hack The Box

Yet another content discovery tool

This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

List of XSS Vectors/Payloads

Welcome to the XSS Challenge Wiki!

Implementation of the Discord Voice API for discord.js and other JS/TS libraries

Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.