Archive of useful sources I keep collecting during my information security journey

An insane list of all dorks taken from everywhere from various different sources.

The Bug Hunters Methodology

This is a resource factory for anyone looking forward to starting bug hunting and would require guidance as a beginner.

A CLI tool for threat modeling and visualizing AI agents built using popular frameworks like LangGraph, AutoGen, CrewAI, and more.

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

This repo is a helpful starting point for those interested in exploring the world of Android hacking and bug bounties. The resources mentioned have personally assisted me.

The beginner's guide to eBPF

Whistleblower is a offensive security tool for testing against system prompt leakage and capability discovery of an AI application exposed through API. Built for AI engineers, security researchers …

Cloud Native Runtime Security

AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.

📓 Some security related notes

Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control

🦀 Small exercises to get you used to reading and writing Rust code!

Steganography Tools

curation of all(most) immunefi bug bounty writeups I could find(till now)

A list of Capture The Flag (CTF) frameworks, libraries, resources and software for started/experienced CTF players 🚩

Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cyber crime investigator in order to find de…

Master programming by recreating your favorite technologies from scratch.

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (LSM-BPF, AppArmor).

A collection of various awesome lists for hackers, pentesters and security researchers

🚀 Ideas for everyone under a CC licence. Feel free to use. I'll send you a postcard if you build anything on this list.

A simple and open-source proxy API that allows you to access OpenAI's ChatGPT API for free!

This repository contains a 90-day cybersecurity study plan, along with resources and materials for learning various cybersecurity concepts and technologies. The plan is organized into daily tasks, …

eBPF-based Networking, Security, and Observability

eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

A book about the internals of the Go programming language.

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.