Source code for Hacker101.com - a free online web and mobile security class.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

A list of resources for those interested in getting started in bug bounties

A list of web application security

A container repository for my public web hacks!

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Awesome Node.js Security resources

A list of all FTP servers in IPv4 that allow anonymous logins.

A tiny web auditor with strong opinions.

Fast CORS misconfiguration vulnerabilities scanner🍻

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

🕷️ A Git source leak exploit tool that restores the entire Git repository, including data from stash, for white-box auditing and analysis of developers' mind

Lookyloo is a web interface allowing to scrape a website and then displays a tree of domains calling each other.

Web application vulnerability scanner

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

java source code static code analysis and danger function identify prog

Clear all your logs in [linux/windows] servers 🛡️

Making Favicon.ico based Recon Great again !

Runs the default Google Lighthouse tests with additional security tests

🎯 PHP / ASP - Shell Backdoor List 🎯

DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities

Awesome Object Capabilities and Capability Security

👨‍🏫 Mike's Web Security Course

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

CS 253 Web Security course at Stanford University

Security Testing Scripts for JWT

A service that can track data breaches like "Have I Been Pwned", but it is specific for Taiwan.

Open IP cameras in IPv4