A collection of cheat sheets for all things security.
β16Oct 31, 2021Updated 4 years ago
Alternatives and similar repositories for SecSheets
Users that are interested in SecSheets are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- π‘ Ease file sharing during pentest/CTF πΈβ11Oct 18, 2022Updated 3 years ago
- is-pwned βΒ Utility to safely check the HaveIBeenPwned "Pwned Passwords" database in the browser.β14Jul 19, 2023Updated 2 years ago
- Kiddy - (linux) kernel identity spooferβ15Mar 18, 2024Updated 2 years ago
- Linux Remote Process Injection and Hooking Example - htopβ12Apr 30, 2021Updated 4 years ago
- Magento Security Scannerβ13Jan 10, 2022Updated 4 years ago
- Open source password manager - Proton Pass β’ AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- β18Updated this week
- An exotic service bruteforce tool.β13Apr 12, 2025Updated 11 months ago
- Burp Suite Extension useful to inspect UPnP securityβ16Nov 9, 2021Updated 4 years ago
- β16Oct 24, 2018Updated 7 years ago
- Static Analysis Courseβ89Mar 18, 2026Updated last week
- Burpsuite Extension for Jsmonβ23Feb 5, 2026Updated last month
- Boxer: A fast directory bruteforce tool written in Python with concurrency.β14Feb 26, 2021Updated 5 years ago
- Cisco CallManager User Enumerationβ15Aug 16, 2022Updated 3 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurationsβ19Nov 18, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Scanner to send specially crafted requests and catch callbacks of systems that are impacted by log4j log4shell vulnerability and to detecβ¦β12Feb 15, 2022Updated 4 years ago
- Data EXfiltration TestERβ21Aug 28, 2019Updated 6 years ago
- Agentic Pentesting MCP server that discovers, exploits, and reports web application vulnerabilities.β41Feb 22, 2026Updated last month
- Burp extention to automatically generate OpenAPI Json for Swagger from proxy trafficβ22Aug 3, 2022Updated 3 years ago
- Extract data from a .git directory.β15Mar 28, 2023Updated 2 years ago
- Vulnerability scanner for Spring4Shell (CVE-2022-22965)β12Apr 7, 2022Updated 3 years ago
- Help fuzz various protocols and waits for ping backs Integrates LDAP server and JNDI payloadβ11Dec 27, 2021Updated 4 years ago
- Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulnerβ¦β15Aug 4, 2023Updated 2 years ago
- Burp Suite extension for parsing Swagger web service definition filesβ19Jul 15, 2025Updated 8 months ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- CVE-2023-21742 Pocβ14Apr 7, 2023Updated 2 years ago
- F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LABβ12May 11, 2023Updated 2 years ago
- β21Jun 29, 2022Updated 3 years ago
- β20Jul 19, 2021Updated 4 years ago
- CVE-2021-26855, also known as Proxylogon, is a server-side request forgery (SSRF) vulnerability in Exchange that allows an attacker to β¦β12Jan 1, 2024Updated 2 years ago
- JitterBug passively searches for Basic Info, open ports, potential CVE's on the given Target IP in third party databases without Direct iβ¦β13Sep 29, 2021Updated 4 years ago
- 4000 security reports transformed to Skills you can use with Claude Code / Gemini CLI etcβ42Updated this week
- Exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManagerβ16Jan 21, 2023Updated 3 years ago
- pSlip is an Android static analysis tool kit designed to find potentially vulnerable escalation paths by analyzing exported components, iβ¦β26Jan 24, 2026Updated 2 months ago
- GPU virtual machines on DigitalOcean Gradient AI β’ AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A powerful static analysis tool that uses AI to scan Android APK files for security vulnerabilities and potential issues. The scanner decβ¦β27Apr 6, 2025Updated 11 months ago
- httpscan implements by Goβ22Apr 1, 2021Updated 4 years ago
- Lightweight BApp that seamlessly integrates powerful LLM-scanning capabilities into Burp's built-in Scanner with improved accuracy. Suppoβ¦β37Aug 4, 2025Updated 7 months ago
- Tool to fuzz for interesting vhost.β24Jan 8, 2025Updated last year
- FOFA εΎε½’ειιε·₯ε ·β23Apr 28, 2022Updated 3 years ago
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunterβ20Feb 16, 2017Updated 9 years ago
- PathBuster - multiple hosts Web path scannerβ23Jun 3, 2024Updated last year