A list of APIs from Iran

A personal list of various resources for those who are interested in learning about infosec and hacking and keeping themselves up to date. This is by no means a complete nor fresh list, but I occas…

The best way to write secure and reliable applications. Write nothing; deploy nowhere.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens

A tool for adding new lines to files, skipping duplicates

Burp Extension for a passive scanning JS files for endpoint links.

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Simple brute forcing in Python.

Penetration tests cases, resources and guidelines.

floodlight controller web panel

Python framework for Telegram Bot API

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

A simple script to screenshot a list of websites

Track the location of every Wi-Fi device (:iphone:) in your house using Raspberry Pis and FIND

Persian NLP Toolkit

Emulator for Software-Defined Wireless Networks

Small book on LXC (Linux Containers)

Small class to extract + compress .zip, .gz, .rar archives via browser.

Bootstrap 3 based flat style admin theme