Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files.

Notes from OSCP, CTF, security adventures, etc...

Subdomain Enumerator and Simple Crawler

OSINT Extension — Chrome extension for quick reconnaissance

CVE-2025-55182 POC

Reverse proxies cheatsheet

Tools and Techniques for Red Team / Penetration Testing

Latest CVEs with their Proof of Concept exploits.

DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.

Mind-Maps of Several Things

Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, …

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

Bug Bounty Hunting Framework Designed to Help Beginners Compete w/ the Pros

POC for CVE-2024-23897 Jenkins File-Read

Notes of the book System Desgin Interview - An Insider's Guide

♥

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Quickly discover exposed hosts on the internet using multiple search engines.

A curated list of Android Security materials and resources For Pentesters and Bug Hunters

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

Awesome XSS Payloads

Awesome list of step by step techniques to achieve Remote Code Execution on various apps!

A python script to scan for Apache Tomcat server vulnerabilities.

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Collection of Scripts for shodan searching stuff.