Stars
AI Trading OS: Multi-AI, multi-exchange trading infrastructure with Strategy Studio.
AI-Hedge-Fund for Crypto 🚀 AI-powered hedge fund for cryptocurrency trading, leveraging LLM agents for intelligent decision-making.
An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
chroma-db-unauthorized-info-disclosure
Practical setup guides and helpers to connect Burp Suite MCP Server to multiple AI backends (Codex, Gemini, Ollama, ...).
Collection of scripts and tools used during bug bounty work. This will be the location of my automation scripts created for my own personal use, and occassionally public released
RSC/Next.js RCE Vulnerability Detector & PoC Chrome Extension – CVE-2025-55182 & CVE-2025-66478
🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.
A security system to protect your vibecoded apps
KeySec Hunter is a **Chrome extension** that scans webpages and linked JavaScript files for **user-defined keywords** and **potential secrets** (API keys, tokens, passwords, credentials, etc.). It’…
This is a "skill" for claude to use FFUF.
Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit
Open-source AI hackers to find and fix your app’s vulnerabilities.
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
A lightweight GPT model, trained to discover subdomains.
BackupFinder discovers backup files on web servers by generating intelligent patterns.
Bug Bounty Methodology 2025: Tools, techniques, and steps to guide you through reconnaissance, enumeration, and testing.
Automated GitHub secret scanning with smart alerting & monitoring.
Abuse trust-boundaries to bypass firewalls and network controls
Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.
Extract JavaScript source trees from Sourcemap files