Reconnaissance tool for GitHub organizations
updated at May 10, 2024, 6:35 a.m.
XRay is a tool for recon, mapping and OSINT gathering from public networks.
updated at May 10, 2024, 4:55 a.m.
Automated Security Testing For REST API's
updated at May 10, 2024, 3:09 a.m.
Chrome extension and Express server that exploits keylogging abilities of CSS.
updated at May 10, 2024, 2:03 a.m.
Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
updated at May 10, 2024, 1:38 a.m.
A high performance offensive security tool for reconnaissance and vulnerability scanning
updated at May 10, 2024, 1:14 a.m.
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
updated at May 9, 2024, 6:04 p.m.
Tool to scan for secret files on HTTP servers
updated at May 9, 2024, 3:33 p.m.
🔐 Tutorial of setting up Security for your API with one way authentication with TLS/SSL and mutual authentication for a java based web server and a client with both Spring Boot. Different clients are provided such as Apache HttpClient, OkHttp, Spring RestTemplate, Spring WebFlux WebClient Jetty and Netty, the old and the new JDK HttpClient, the old and the new Jersey Client, Google HttpClient, Unirest, Retrofit, Feign, Methanol, vertx, Scala client Finagle, Featherbed, Dispatch Reboot, AsyncHttpClient, Sttp, Akka, Requests Scala, Http4s Blaze, Kotlin client Fuel, http4k, Kohttp and ktor. Also other server examples are available such as jersey with grizzly. Also gRPC, WebSocket and ElasticSearch examples are included
updated at May 9, 2024, 11:52 a.m.
A free software to find the components installed in Joomla CMS, built out of the ashes of Joomscan.
updated at May 9, 2024, 8:59 a.m.
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
updated at May 8, 2024, 11:55 p.m.
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.
updated at May 7, 2024, 6:10 p.m.
A collection of JavaScript engine CVEs with PoCs
updated at May 7, 2024, 11:12 a.m.
Scan your code for security misconfiguration, search for passwords and secrets.
updated at May 5, 2024, 6:14 a.m.