DOMPurify by cure53

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

created at Feb. 17, 2014, 9:48 p.m.

JavaScript

151 -1

14,021 +40

726 +3

GitHub
Infosec_Reference by rmusser01

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

created at Sept. 13, 2014, 12:08 a.m.

CSS

265 +0

5,584 +5

1,191 +3

GitHub
notes by ChALkeR

Some public notes

created at Oct. 17, 2015, 11:02 p.m.

Unknown languages

92 +0

1,268 +1

77 +0

GitHub
EQGRP by x0rz

Decrypted content of eqgrp-auction-file.tar.xz

created at April 8, 2017, 2:03 p.m.

Perl

397 +0

4,099 +1

2,070 -3

GitHub
bug-bounty-reference by ngalongc

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

created at Sept. 1, 2016, 12:53 p.m.

Unknown languages

239 +0

3,754 +4

988 -1

GitHub
awesome-bug-bounty by djadmin

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

created at Feb. 13, 2016, 11 p.m.

Unknown languages

297 +0

4,662 +16

918 +0

GitHub
BadLibrary by SecureSkyTechnology

vulnerable web application for training

created at Dec. 13, 2017, 6:43 a.m.

JavaScript

19 +0

58 +0

7 +0

GitHub
CyberChef by gchq

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

created at Nov. 28, 2016, 10:34 a.m.

JavaScript

390 +0

29,267 +96

3,280 +13

GitHub
iaito by hteso

This project has been moved to:

created at March 28, 2017, 5:27 p.m.

C++

82 +0

1,463 +0

117 +1

GitHub
plasma by plasma-disassembler

Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.

created at March 9, 2015, 9:16 p.m.

Python

149 +0

3,047 +0

277 +0

GitHub
reverse-shell by lukechilds

Reverse Shell as a Service

created at Sept. 13, 2017, 11:38 a.m.

JavaScript

31 +0

1,852 +0

234 +0

GitHub
Reverse-Shell-Manager by WangYihang

hammer A multiple reverse shell session/client manager via terminal

created at Oct. 23, 2017, 1:41 a.m.

Python

8 +0

238 +0

66 +0

GitHub
Webshell-Sniper by WangYihang

hammer Manage your website via terminal

created at July 24, 2017, 9:13 a.m.

Python

21 +0

420 +0

114 +0

GitHub
weevely3 by epinna

Weaponized web shell

created at Sept. 20, 2014, 10:16 a.m.

Python

132 +1

3,200 +10

605 +2

GitHub
webshell by tennc

This is a webshell open source project

created at May 23, 2013, 7:37 a.m.

PHP

488 +0

10,123 +15

5,574 +1

GitHub
mitmproxy by mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

created at Feb. 16, 2010, 4:10 a.m.

Python

624 +0

36,847 +91

4,041 +6

GitHub
bXSS by LewisArdern

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

created at Dec. 13, 2017, 11:49 p.m.

JavaScript

14 +0

518 +5

64 +0

GitHub
repo-supervisor by auth0

Scan your code for security misconfiguration, search for passwords and secrets. mag

created at Feb. 21, 2017, 8:06 p.m.

JavaScript

33 +0

637 +0

88 +0

GitHub
malware-jail by HynekPetrak

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

created at Jan. 10, 2016, 10:41 p.m.

JavaScript

46 +0

460 +0

100 +0

GitHub
js-xss by leizongmin

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

created at Sept. 18, 2012, 2:05 p.m.

HTML

117 +0

5,218 +3

628 +0

GitHub