My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.
☆912Sep 25, 2025Updated 5 months ago
Alternatives and similar repositories for security-tools
Users that are interested in security-tools are comparing it to the libraries listed below
Sorting:
- Bug Bounty writeups, Vulnerability Research, Tutorials, Tips&Tricks☆207Aug 7, 2024Updated last year
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,285Aug 18, 2025Updated 6 months ago
- SSRF (Server Side Request Forgery) testing resources☆2,483Oct 12, 2024Updated last year
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,382Sep 14, 2023Updated 2 years ago
- My CTF journey since 2015. Stats, writeups, code snippets, notes, challenges.☆572Feb 10, 2026Updated 2 weeks ago
- A Powerful Subdomain Takeover Tool☆963Oct 17, 2023Updated 2 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,903Sep 27, 2021Updated 4 years ago
- A collection of custom security tools for quick needs.☆3,284May 1, 2023Updated 2 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆749Apr 12, 2022Updated 3 years ago
- ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.☆727May 6, 2022Updated 3 years ago
- Git All the Payloads! A collection of web attack payloads.☆3,903May 15, 2023Updated 2 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆217Oct 12, 2024Updated last year
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 4 years ago
- Find exploits in local and online databases instantly☆1,809Sep 27, 2021Updated 4 years ago
- Attack Surface Management Platform☆9,418Feb 15, 2026Updated 2 weeks ago
- Miscellaneous exploit code☆1,568Oct 6, 2023Updated 2 years ago
- PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with othe…☆3,718Sep 13, 2023Updated 2 years ago
- Subdomain Takeover tool written in Go☆2,028Aug 13, 2023Updated 2 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,027Feb 5, 2021Updated 5 years ago
- Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet☆5,460Dec 12, 2024Updated last year
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,764Mar 23, 2022Updated 3 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,448Oct 1, 2025Updated 5 months ago
- ☆2,316Dec 8, 2023Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,774Apr 26, 2024Updated last year
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- List of Awesome Asset Discovery Resources☆2,370Jan 22, 2025Updated last year
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,183Dec 11, 2022Updated 3 years ago
- Collection of the cheat sheets useful for pentesting☆4,264Feb 16, 2024Updated 2 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,244Jan 8, 2026Updated last month
- Awesome XSS stuff☆5,064Oct 30, 2024Updated last year
- List of Awesome Red Teaming Resources☆7,788Dec 28, 2023Updated 2 years ago
- A Modern Orchestration Engine for Security☆6,109Feb 19, 2026Updated last week
- An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.☆5,903Oct 20, 2025Updated 4 months ago
- This script is intended to automate your reconnaissance process in an organized fashion☆2,014Aug 19, 2021Updated 4 years ago
- Open Redirect Payloads☆654Oct 12, 2024Updated last year
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,068Jul 31, 2024Updated last year
- A default credential scanner.☆1,503Jul 8, 2025Updated 7 months ago
- Some tools to automate recon - 003random☆294Jun 5, 2018Updated 7 years ago
- A collection of hacks and one-off scripts☆2,424Mar 13, 2025Updated 11 months ago