A list of useful payloads and bypass for Web Application Security and Pentest/CTF
updated at May 26, 2024, 10:21 p.m.
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
updated at May 26, 2024, 3:32 p.m.
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
updated at May 26, 2024, 3:30 p.m.
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
updated at May 26, 2024, 1:36 p.m.
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
updated at May 26, 2024, 7:38 a.m.
An advanced memory forensics framework
updated at May 26, 2024, 4:12 a.m.
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
updated at May 26, 2024, 2:16 a.m.
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
updated at May 26, 2024, 12:20 a.m.
Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
updated at May 25, 2024, 1:05 a.m.
Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.
updated at May 25, 2024, 12:45 a.m.
Infection Monkey - An open-source adversary emulation platform
updated at May 24, 2024, 8:56 p.m.