AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Latest Burpsuite Professional v2025.1.*

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

API-Pentesting-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

Android Bug Hunting

The iOS Buster is a groundbreaking penetration testing tool for iOS, capable of performing both static and dynamic testing. It provides detailed reports, including STR, highlighting discovered vuln…

Welcome to My-iOS-Pentesting-Cheatsheet! This repository serves as my personal guide and reference for iOS penetration testing.

Puppeteer script for high-performance youtube video view bot & video playback automation (educational purposes only).

Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!

evilginx3 + gophish

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and th…

Flutter SSL pinning bypass using IP forwarding

I have added IPA files for Filza File Manager to install via TrollStore on iOS 15-15.1.1. Which is more stable.

Banking System For QB-Core

SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty

Small collection of Ransomware organized by family.

A pentest reporting tool written in Python. Free yourself from Microsoft Word.

A tool that helps you easy trace classes, functions, and modify the return values of methods on iOS platform

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Bug Bounty Tools used on Twitch - Recon

Scans a list of IP addresses for weak SSH algorithms and vulnerabilities related to the SWEET32 attack.

Simple Nmap Usage For File Targets

Most usable tools for iOS penetration testing

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.

🙃 A delightful community-driven (with 2,400+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python…

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing