A collection of bookmarks for penetration testers, bug bounty hunters, malware developers, reverse engineers and anyone who is just interested in infosec topics.

HTML 915 70 Updated Aug 30, 2023

doyensec / CSPTBurpExtension

CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.

Java 155 8 Updated Jul 2, 2024

francisconeves97 / jxscout

jxscout superpowers JavaScript analysis for security researchers

JavaScript 303 25 Updated Sep 17, 2025

badtuxx / girus-cli

Go 2,284 222 Updated Nov 24, 2025

anderspitman / awesome-tunneling

List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.

19,525 948 Updated Oct 18, 2025

badtuxx / LINUXtips-github-actions

JavaScript 89 161 Updated Oct 2, 2025

EmadYaY / Comprehensive-Cache-Vulnerabilities-Checklist

A comprehensive checklist for identifying and mitigating cache vulnerabilities in web applications, covering web cache poisoning, deception, DNS poisoning, and CDN-specific attacks. Includes detect…

15 3 Updated Jul 2, 2025

MorDavid / NetworkHound

Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and comprehensive network discovery. Export results as BloodHound‑…

Python 616 66 Updated Oct 21, 2025

Sh1Yo / x8

Hidden parameters discovery suite

Rust 1,945 177 Updated Sep 8, 2024

sahaj-b / ghostty-cursor-shaders

My custom cursor shaders for ghostty (trails and ripple/pulse effects)

GLSL 384 1 Updated Oct 30, 2025

Piotr1215 / cv-pipeline-template

Automated CV generation pipeline - GitHub template for multi-variant LaTeX CVs

TeX 14 1 Updated Nov 16, 2025

lockbook / lockbook

Encrypted notebook

Rust 254 22 Updated Nov 26, 2025

SikandarJODD / portfolio-template

Minimalist Developer Portfolio Template using Svelte, Inspired from Magic UI

TypeScript 129 24 Updated Feb 23, 2025

p0dalirius / ShareHound

A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily

Python 221 14 Updated Nov 20, 2025

PortSwigger / bambdas

Bambdas collection for Burp Suite Professional and Community.

Java 425 70 Updated Nov 19, 2025

doyensec / CSPTPlayground

CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).

JavaScript 146 13 Updated Mar 31, 2025

Wansmer / treesj

Neovim plugin for splitting/joining blocks of code

Lua 1,278 43 Updated Sep 15, 2025

saxon1964 / neovim-tips

Discover hundreds of Neovim tips, tricks, and shortcuts — and even add your own! You’ll also get a beautifully formatted PDF book with every tip inside.

Lua 378 11 Updated Nov 25, 2025

FiloSottile / age

A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.

Go 20,209 580 Updated Nov 16, 2025

anufrievroman / calcure

Modern TUI calendar and task manager with minimal and customizable UI.

Python 2,092 64 Updated Oct 16, 2025

keleshev / vi-gang-sign

SVG rendition of the original vi gang sign

13 1 Updated Nov 13, 2011

opiasec / labs

Labs is a platform to learn and improve Application Security skills by working with ephemerous and secure laboratories

Go 11 2 Updated Aug 8, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

darccau darccau

Achievements

Achievements

Block or report darccau

Stars

nunocoracao / blowfish

IdoPesok / zsa

kavishdevar / librepods

elkokc / reflector

xnl-h4ck3r / waymore

xnl-h4ck3r / GAP-Burp-Extension

botesjuan / Burp-Suite-Certified-Practitioner-Exam-Study

streaak / keyhacks

kargisimos / offensive-bookmarks