A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances.

Offline Security Client

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Blind SQL Injection (BSQLI) Data Exploration Tool

Resolvalid is a Go tool that will generate or validate a list of DNS servers, providing you with a file containing only valid DNS servers.

OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

CVE-2024-24919 [Check Point Security Gateway Information Disclosure]

SmartTube - an advanced player for set-top boxes and tvs running Android OS

Context aware, pluggable and customizable data protection and de-identification SDK for text and images

Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process

Hackbat repository

A tool for adding new lines to files, skipping duplicates

CT Log Scanner

how to look for Leaked Credentials !

A list of public penetration test reports published by several consulting firms and academic security groups.

IIS shortname scanner + bruteforce

Web Pentesting Fuzz 字典,一个就够了。

ShodanX is a tool to gather information of targets using shodan dorks⚡.

Blazing fast admin panel finder with asyncio and aiohttp

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

The FLARE team's open-source tool to identify capabilities in executable files.

Dynamic DNS Update Bruteforce Tool

An IIS short filename enumeration tool

A Selenium scraper for public domain search tools.

A fast enumeration tool for publicly exposed Azure Storage blobs.

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.