Lists (32)
AI
Bug Bounty
Cheat Sheet, study, practice
Cloud
(De)Crypted
Docker & Kubernetes
File Inclusion/Upload
Futures
1. Rtl818eus for kali linux 2. Python lib for finding vulns in da codeFuzz, brute, enum, bypass tools
Fuzzing (payloads, dicts etc)
Git files, CVE search & dorks
Injections
iOS, GraphQL, API, JWT
Malware (be careful)
(NO)SQL
OSInt
Other
Penetration Testing
Phishing, mitm
PrivEsc tools
Red Team/DarkWeb
Scanners
Server Side Prototype Pollution
Shells, backdoors
Social Engineering
SSRF
SSTI, PP
Useful
Web3
Wi-Fi, IoT, DOS, vehicle
Windows, Active Directory, PowerShell
XSS/CSRF
Stars
Community guide to securing and improving privacy on macOS.
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
Advanced Recon tool for Bug Bounty and Pentesting
A Chrome extension that automatically scans web pages and internal links for user-defined keywords, storing results and sending notifications or alerts.
Scrape domain names from SSL certificates of arbitrary hosts
Aptos is a layer 1 blockchain built to support the widespread use of blockchain through better technology and user experience.
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
🚀 Try the Learn EVM Explorer we just launched!!!
Generate Solidity Source Code Metrics, Complexity and Risk profile reports for your project.
The ultimate, most advanced, security, DeFi, assembly, web3 auditor course ever created.
A collection of practical security-focused guides and checklists for smart contract development
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
BruteXSS - Cross-Site Scripting Bruteforcer
Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.
HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…
All of the presentations in the Learn Solidity course
Reproduce DeFi hacked incidents using Foundry.
The smart contract security training ground for developers, security researchers and educators.
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
Solhint is an open-source project to provide a linting utility for Solidity code.
curation of all(most) immunefi bug bounty writeups I could find(till now)
Lesson content for cryptozombies.io
A repository for automatically using the latest chainlink repo from the core chainlink repo.