beef by beefproject

The Browser Exploitation Framework Project

updated at May 11, 2024, 9:37 p.m.

438 -1

9,406 +10

2,060 +1

wfuzz by xmendez

Web application fuzzer

updated at May 11, 2024, 9:45 p.m.

168 +0

5,663 +9

1,332 +1

Sublist3r by aboul3la

Fast subdomains enumeration tool for penetration testers

updated at May 11, 2024, 9:54 p.m.

233 +0

9,281 +15

2,052 +2

GitMiner by UnkL4b

Tool for advanced mining for content on Github

updated at May 11, 2024, 10 p.m.

108 +0

2,057 +4

427 +0

awesome-cve-poc by qazbnm456

✍️ A curated list of CVE PoCs.

updated at May 11, 2024, 10:45 p.m.

322 +0

3,237 +4

718 +1

FOCA by ElevenPaths

Tool to find metadata and hidden information in the documents.

updated at May 11, 2024, 11:01 p.m.

141 +0

2,760 +5

529 +0

tinfoleak by vaguileradiaz

The most complete open-source tool for Twitter intelligence analysis

updated at May 11, 2024, 11:10 p.m.

72 +0

1,896 +1

273 +1

xssor2 by evilcos

XSS'OR - Hack with JavaScript.

updated at May 11, 2024, 11:35 p.m.

95 +0

2,098 +2

378 +0

xxe-injection-payload-list by payloadbox

🎯 XML External Entity (XXE) Injection Payload List

updated at May 12, 2024, 12:09 a.m.

24 +0

1,021 +2

281 +0

Photon by UltimateHackers

Incredibly fast crawler designed for OSINT.

updated at May 12, 2024, 12:15 a.m.

322 +0

10,534 +13

1,453 -1

DOMPurify by cure53

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

updated at May 12, 2024, 12:33 a.m.

150 -2

12,924 +54

670 -1

gitleaks by gitleaks

Protect and discover secrets using Gitleaks 🔑

updated at May 12, 2024, 1:41 a.m.

153 +0

15,336 +28

1,321 +6

cloudgoat by RhinoSecurityLabs

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

updated at May 12, 2024, 2:08 a.m.

71 +0

2,760 +9

577 +1

sql-injection-payload-list by payloadbox

🎯 SQL Injection Payload List

updated at May 12, 2024, 2:18 a.m.

90 +1

4,378 +18

1,079 +5

JShell by UltimateHackers

JShell - Get a JavaScript shell with XSS.

updated at May 12, 2024, 3:45 a.m.

25 +0

504 +3

140 +0

fuzz.txt by Bo0oM

Potentially dangerous files

updated at May 12, 2024, 4:05 a.m.

86 +0

2,794 +2

476 +3

XSStrike by UltimateHackers

Most advanced XSS scanner.

updated at May 12, 2024, 4:50 a.m.

274 +0

12,743 +15

1,847 +2

command-injection-payload-list by payloadbox

🎯 Command Injection Payload List

updated at May 12, 2024, 4:58 a.m.

72 +0

2,663 +7

589 +5

radare2 by radareorg

UNIX-like reverse engineering framework and command-line toolset

updated at May 12, 2024, 5:08 a.m.

483 -2

19,678 +20

2,938 +1

nuclei by projectdiscovery

Fast and customizable vulnerability scanner based on simple YAML based DSL.

updated at May 12, 2024, 5:15 a.m.

215 +0

17,389 +76

2,256 +9