This is your work, valued

Fabio Baroni

Expert
@FabioBaroni

awesome-exploit-development. A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development

2.1k

awesome-chinese-infosec-websites. A curated list of Chinese websites and personal blogs about ethical hacking and pentesting

112

WAS. Automatic USB drive malware scanning tool for the security-minded person

97

CVE-2024-3094-checker. Quick and dirty PoC for checking whether a vulnerable version of xz-utils is installed (CVE-2024-3094)

72

awesome-pentest. A collection of awesome penetration testing resources, tools and other shiny things

33

awesome-web-hacking. A list of web application security

26

security. CSS

6

bugbounty-cheatsheet. A list of interesting payloads, tips and tricks for bug bounty hunters.

5

big-list-of-naughty-strings. The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

3

Cheatsheets. Helped during my OSCP lab days.

2

firmware-tools. OpenWrt firmware patching and repackaging tools

1

Red-Team-Infrastructure-Wiki. Wiki to collect Red Team infrastructure hardening resources

1

Yujin. Audio condenser for language immersion

1

mentalist. Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.

1

bug-bounty-reference. Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

1

php_bugs. PHP代码审计分段讲解

1