awesome-exploit-development. A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development
2.1kawesome-chinese-infosec-websites. A curated list of Chinese websites and personal blogs about ethical hacking and pentesting
112WAS. Automatic USB drive malware scanning tool for the security-minded person
97CVE-2024-3094-checker. Quick and dirty PoC for checking whether a vulnerable version of xz-utils is installed (CVE-2024-3094)
72awesome-pentest. A collection of awesome penetration testing resources, tools and other shiny things
33awesome-web-hacking. A list of web application security
26security. CSS
6bugbounty-cheatsheet. A list of interesting payloads, tips and tricks for bug bounty hunters.
5big-list-of-naughty-strings. The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
3Cheatsheets. Helped during my OSCP lab days.
2firmware-tools. OpenWrt firmware patching and repackaging tools
1Red-Team-Infrastructure-Wiki. Wiki to collect Red Team infrastructure hardening resources
1Yujin. Audio condenser for language immersion
1mentalist. Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.
1bug-bounty-reference. Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
1php_bugs. PHP代码审计分段讲解
1