Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

🔥 The Web Data API for AI - Turn entire websites into LLM-ready markdown or structured data

Offensive Operations Orchestrator

Documentação técnica do Rescisão Fácil. Projeto desenvolvido com Next.js 14, regras fiscais de 2026 e pSEO (500+ páginas estáticas).

Chrome extension to extract domains from Google search results - by ofjaaah

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Fully autonomous AI hacker to find actual exploits in your web apps. Shannon has achieved a 96.15% success rate on the hint-free, source-aware XBOW Benchmark.

ProjectDiscovery's Open Source Tool Manager

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

React Shell & Next.js RSC Exploit Tool (CVE-2025-55182)

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.

Advanced LLM-powered brute-force tool combining AI intelligence with automated login attacks

WebRecon is an advanced Open Source Intelligence (OSINT) web reconnaissance tool designed for cybersecurity professionals, penetration testers, and security researchers. It automates the process of…

Cybersecurity AI (CAI), the framework for AI Security

A next generation HTTP client for Python. 🦋

All the deals for InfoSec related software/tools this Black Friday

Directory/File, DNS and VHost busting tool written in Go

Find secrets with Gitleaks 🔑

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

orgininaly this was a rewrite of routersploit rebuild in rust but it has grown and started shaping into something more

💫 Toolkit to help you get started with Spec-Driven Development

KeySec Hunter is a **Chrome extension** that scans webpages and linked JavaScript files for **user-defined keywords** and **potential secrets** (API keys, tokens, passwords, credentials, etc.). It’…

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Develo…

Fast web fuzzer written in Go

Automatic SQL injection and database takeover tool

recon for bug hunters