vulntechx is a powerful security tool that automates vulnerability scanning based on technology stack detection. It intelligently processes hosts through tech stack identification and executes targ…

NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enumeration te…

The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbitrary binaries and scripts using any of our nine supported cl…

MCP configuration to connect AI agent to a Linux machine.

Useful tool to track location or mobile number

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Open Source Intelligence (OSINT) Tool List for Cyber Threat Intelligence Researchers

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Use this bot to monitor new CVEs containing defined keywords and send alerts to Slack and/or Telegram.

Open-source UI component library and front-end development framework based on Tailwind CSS

Fetches javascript file from a list of URLS or subdomains.

i will upload more templates here to share with the comunity.

Fully featured and community-driven hacking environment

A data-first security scanner that finds risks and vulnerabilities in your code so you can protect sensitive data (PHI, PD, PII).

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

yataf extracts secrets and paths from files or urls - its best used against javascript files

A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.

🚀 HTTPie Desktop — cross-platform API testing client for humans. Painlessly test REST, GraphQL, and HTTP APIs.

Automating situational awareness for cloud penetration tests.

Display and control your Android device

BlackHeart is a simple python script to generate powershell scripts that demonstrate reverse shell gaining without Microsoft Defender restrictions. (FOR EDUCATIONAL PURPOSES!!)

Federated query engine for AI - The only MCP Server you'll ever need

Notes about attacking Jenkins servers

All about bug bounty (bypasses, payloads, and etc)

The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks

Detectify Crowdsource Challenge

Curating the best DevSecOps resources and tooling.

During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target system computers. Here is a simple way to evade anti-virus …

Manipulating and Abusing Windows Access Tokens.