charsetinspect by hack-all-the-things

A script that inspects multi-byte character sets looking for characters with specific user-defined properties

updated at March 22, 2023, 1:45 a.m.

3 +0

25 +0

7 +0

slurp by hehnope

this can't keep happening

updated at Nov. 22, 2023, 4:02 a.m.

1 +0

2 +0

0 +0

ntlm_challenger by b17zr

Parse NTLM challenge messages over HTTP and SMB

updated at Jan. 4, 2024, 4:39 p.m.

4 +0

141 +0

25 +0

XSS.png by LucaBongiorni

A XSS mind map ;)

updated at Feb. 25, 2024, 5:55 p.m.

5 +0

57 +0

143 +0

VWGen by qazbnm456

Vulnerable Web applications Generator

updated at Feb. 26, 2024, 1:08 a.m.

7 +0

84 +0

18 +0

BadLibrary by SecureSkyTechnology

vulnerable web application for training

updated at April 4, 2024, 8:38 a.m.

20 +0

57 +0

7 +0

malware-jail by HynekPetrak

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

updated at April 5, 2024, 2:38 p.m.

46 +0

453 +0

99 +0

iaito by hteso

This project has been moved to:

updated at April 10, 2024, 8:57 p.m.

82 +0

1,470 +0

131 +0

GSDF by We5ter

A domain searcher named GoogleSSLdomainFinder - 基于谷歌SSL透明证书的子域名查询工具

updated at April 11, 2024, 7 a.m.

7 +0

174 +0

57 +0

dtd-finder by GoSecure

List DTDs and generate XXE payloads using those local DTDs.

updated at April 18, 2024, 6:06 p.m.

14 +0

582 +0

103 +0

ctftool by taviso

Interactive CTF Exploration Tool

updated at April 23, 2024, 6:50 a.m.

60 +0

1,631 +0

276 -1

Dockerfiles by espi0n

None

updated at April 24, 2024, 5:26 p.m.

5 +0

37 +0

3 +0

a2sv by hahwul

Auto Scanning to SSL Vulnerability

updated at April 27, 2024, 8:49 a.m.

45 +0

610 +0

166 +0

cssInjection by dxa4481

Stealing CSRF tokens with CSS injection (without iFrames)

updated at April 27, 2024, 8:50 a.m.

15 +0

313 +0

53 +0

uxss-db by Metnew

🔪Browser logic vulnerabilities :skull_and_crossbones:

updated at April 28, 2024, 3:53 a.m.

35 +0

675 +0

97 +0

dref by mwrlabs

DNS Rebinding Exploitation Framework

updated at April 28, 2024, 9:34 a.m.

25 +0

481 +0

71 +0

certificate-transparency by google

Auditing for TLS certificates.

updated at April 29, 2024, 6:54 p.m.

103 +0

866 +0

282 +0

notes by ChALkeR

Some public notes

updated at April 30, 2024, 2:06 a.m.

92 -1

1,261 +0

77 +0

DVCS-Pillage by evilpacket

Pillage web accessible GIT, HG and BZR repositories

updated at April 30, 2024, 6:13 p.m.

16 +0

313 +0

63 +0

dns-rebind-toolkit by brannondorsey

A front-end JavaScript toolkit for creating DNS rebinding attacks.

updated at April 30, 2024, 6:13 p.m.

24 +0

481 +0

93 +0