Stars
The best workflows and configurations I've developed, having heavily used Claude Code since the day of it's release. Workflows are based off applied learnings from our AI-native startup.
CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
declutters url lists for crawling/pentesting Go implementation of https://github.com/s0md3v/uro/
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, colβ¦
EvenBetter is a frontend Caido plugin that makes the Caido experience even better π
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous β¦
bebiksior / PwnFox-CaidoCompatible
Forked from yeswehack/PwnFoxPwnFox is a Firefox/Caido extension that provide usefull tools for your security audit.
The recursive internet scanner for hackers. π§‘
BChecks collection for Burp Suite Professional and Burp Suite DAST
A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting to scan multiple bug bounty programs simultaneously, on a recβ¦
Virtual whiteboard for sketching hand-drawn like diagrams
π΅οΈββοΈ All-in-one OSINT tool for analysing any website
A multi-cloud framework for big data analytics and embarrassingly parallel jobs, that provides an universal API for building parallel applications in the cloud βοΈπ
Blazing fast Neovim framework providing solid defaults and a beautiful UI, enhancing your neovim experience.
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
π¦ Make security testing of K8s, Docker, and Containerd easier.
ItsIgnacioPortal / XSStrike-Reborn
Forked from s0md3v/XSStrikeUpdated fork of XSStrike: The most advanced XSS scanner.
A collection of awesome security hardening guides, tools and other resources
Obtain GraphQL API schema even if the introspection is disabled
this html file creates a csrf poc form to any http request.
A repository with 3 tools for pwn'ing websites with .git repositories available
A font family with a great monospaced variant for programmers.