dderevjanik
Follow
security
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
ESLint rules for Node Security
Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way …
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
How to systematically secure anything: a repository about security engineering
nodejsscan is a static security code scanner for Node.js applications.
A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
A collection of all the data i could extract from 1 billion leaked credentials from internet.
w3af: web application attack and audit framework, the open source web vulnerability scanner.
A fast DOM based XSS vulnerability scanner with simplicity.
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Striker is an offensive information and vulnerability scanner.
Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
A repository of curated datasets from various attacks
🦄 A curated list of privacy & security-focused software and services
This tool can be used to brute discover GET and POST parameters