Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
☆17Jun 22, 2022Updated 3 years ago
Alternatives and similar repositories for hacktricks
Users that are interested in hacktricks are comparing it to the libraries listed below
Sorting:
- A curated list of amazingly libraries, services and resources to work with PDF files☆16Jan 28, 2026Updated last month
- A OWASP Based Checklist With 80+ Test Cases☆157Oct 26, 2022Updated 3 years ago
- ☆33Aug 25, 2021Updated 4 years ago
- SBOM-TOOL is a ctl tool that generates software bill of materials (SBOM) for software projects through source code warehouse, code finger…☆13Oct 11, 2025Updated 4 months ago
- A OWASP Based Checklist With 500+ Test Cases☆858Oct 26, 2022Updated 3 years ago
- Transfer Ethereum ERC20 Tokens using Golang☆13Aug 25, 2018Updated 7 years ago
- An advanced AI-driven vulnerability scanner and penetration testing tool that integrates multiple AI providers (OpenAI, Grok, OLLAMA, Cla…☆34Nov 7, 2025Updated 3 months ago
- Publicly available training resources used by Security PS to train application security engineers☆10Feb 16, 2021Updated 5 years ago
- ☆15Nov 15, 2023Updated 2 years ago
- Telegram bot with OpenAI chat. Supports answering to voice messages. Streaming responses. History summarization. Function calls☆12Nov 22, 2025Updated 3 months ago
- ☆10May 29, 2023Updated 2 years ago
- ICU-WP is a Flask-based WordPress username enumeration tool. It detects WordPress sites and uses methods like author URL checks, REST API…☆14Jan 17, 2025Updated last year
- A simple C program to demonstrate a Buffer Overflow.☆12Jul 31, 2021Updated 4 years ago
- Methodoloy for pentesting web applications.☆10Aug 18, 2022Updated 3 years ago
- Javascript (Node and Browser) SDK for interacting with the Token System☆13Sep 29, 2025Updated 5 months ago
- Simple web app to track OWASP WSTG security testing progress☆27Sep 12, 2025Updated 5 months ago
- Bug Hunting Handbook☆11Aug 11, 2022Updated 3 years ago
- Hunting Newly Registered Domains☆10Jan 6, 2019Updated 7 years ago
- ZAP Website☆20Updated this week
- Master Thick Client Penetration Testing: Explore practical methodologies, uncover vulnerabilities, and enhance security.☆20Apr 6, 2024Updated last year
- javascript phishing professionel ;redirect victim if he wants to login one paypal or another web site☆11Nov 5, 2020Updated 5 years ago
- Vulnerable Windows Application for Pentesters from the house of DarkRelay Security Labs. The project is along the lines of DVWA, AWSGoat …☆14Dec 28, 2023Updated 2 years ago
- A black-box fuzzing framework for the Intent-Based Networking (IBN)☆15Aug 14, 2023Updated 2 years ago
- SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types i…☆18Sep 12, 2017Updated 8 years ago
- A collection of wordlists to use with privilege escalation and password cracking tasks☆14Feb 13, 2024Updated 2 years ago
- Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords☆13May 2, 2018Updated 7 years ago
- SSL/TLS Certificate Checker - A Python script to validate SSL/TLS certificates for common misconfigurations and output the results in JSO…☆16Sep 27, 2023Updated 2 years ago
- Pickaxe is a fast and customizable security scan library which simplifies security testing for web applications like Adobe Experience Man…☆15Dec 5, 2023Updated 2 years ago
- ☆14Aug 16, 2021Updated 4 years ago
- 1500+ Template Machine/Challenges for Hack The Box (HTB) and TryHackMe (THM) for Obsidian☆27Mar 8, 2025Updated 11 months ago
- A collection of several hundred online tools for OSINT☆22Sep 27, 2024Updated last year
- This repo offers comprehensive information, necessary tools, and instructional videos for beginners in Android penetration testing, provi…☆22Jun 12, 2023Updated 2 years ago
- ☆18Oct 14, 2020Updated 5 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆20Jul 8, 2024Updated last year
- *nix config files: bash, vim (w/ plugins), screen, etc☆25Jul 7, 2020Updated 5 years ago
- ☆78Apr 25, 2023Updated 2 years ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆29Jun 13, 2025Updated 8 months ago
- OWASP Thick Client Application Security Verification Standard☆25Jan 19, 2026Updated last month
- ☆22May 23, 2024Updated last year