securitymania Goto Github PK
Type: User
Type: User
This challenge is Inon Shkedy's 31 days API Security Tips.
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
A list of interesting payloads, tips and tricks for bug bounty hunters.
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Resources for Building Virtual Machine Labs Live Training. YEET.
A super small jsp webshell with file upload capabilities.
Automated All-in-One OS command injection and exploitation tool.
Scrapy python crawler/spider with post/get login (handles CSRF), variable level of recursions and optionally save to disk
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
This archive contains the different scripts which I was used in the CTF challenges. Sometimes the scripts are meaningless. If you get any sense with the scripts you can use for your solutions
Example for OWASP devslop
The fastest and cross-platform subdomain enumerator, do not waste your time.
Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
:broken_heart: Hearbleed exploit to retrieve sensitive information CVE-2014-0160 :broken_heart:
This is my first git note
Hitme is a baby version of Postb.in service.
HTML5 Training material for Attack and Secure training sessions.
This script is used to detect the domain is accepting HTTP or HTTPS connection. You can pass Sub-domaina list as input
Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Integrate Jekyll with Github Pages and Travis CI to automatically build Jekyll site
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
Linux Device Drivers 3 examples updated to work in recent kernels
A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
An Online Shopping website[Built for learning purpose]
Magic Mask Twrp Flash file
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.
Pathbrute
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.