A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

BrutDroid - Android Studio Pentest Automator: Streamline mobile pentesting with automated emulator rooting, Frida, and Burp Suite integration.

A powerful Chrome extension for detecting and analyzing React Server Components (RSC) and Next.js App Router vulnerabilities

Programming and Problem Solving in Haskell

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

A fast, minimalistic scanner for time-based SQL injection (SQLi) detection – built in Go.

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

A collection of PDF/books about the modern web application security and bug bounty.

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.

book list

Jetpack Media3 support libraries for media use cases, including ExoPlayer, an extensible media player for Android

Static solidity smart contracts scanner written in Python

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Resimleri çizilmiş resimlere çevirme

find active domains from list of subdomains

morphykutay.github.io