All In One Web Recon

Web Path Finder

Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts

Open source self-hosted cyber security learning platform

Whitepass Bypass Whitelist/Ratelimit Implementations in Web Applications/APIs

CyberSec Resources: FRAMEWORKS & STANDARDS; Pentesting Audits & Hacking; PURPLE TEAMING, AD, API, web, clouds, CTF, OSINT, Pentest tools, Network Security, Privilege escalation, Exploiting, Reversing, Secure Code, Bug Bounty, ...

Web application pentesting recon

A powerful recon tool

This repository discusses the subdomain takeover vulnerability and lists of services which are vulnerable to it. It also provides information, methodology and resources to perform subdomain takeover attacks.

Small tool to decode ASP.NET __VIEWSTATE variable when doing webpentests

The simplest way to integrate your subdomain enum outputs with Burp Pro (Fast Crawler)

Hidden Fuzzer is a URL fuzzing tool designed to uncover hidden paths and resources on web applications. It features multithreading, customizable HTTP headers, and request parameters for optimized performance.

Sitemaps and Robots.txt for websites around the world.

a simple vulnerable web applications, gain access then capture the flag.

Erlik 2 - Vulnerable-Flask-App

Sucks all embedded URLs from a given URI or file. Ideal to parse URLs from CSS or JavaScript (such as API calls, webservices, ;)

The CyberTalents repository is a collection of solutions and write-ups for challenges sourced from the CyberTalents platform. Organized topic, this repository serves as a resource for cybersecurity enthusiasts seeking to enhance their skills and understanding of security concepts.

A Simple Tool to gather information from any website, domain, sub-domain, DNS, links by enumeration with simple commands.

My Private Website Pentesting Tool

shell script that automates the installation of essential bug bounty and web pentesting tools. It supports Linux and macOS