My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.
☆923Apr 22, 2026Updated 2 months ago
Alternatives and similar repositories for security-tools
Users that are interested in security-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Bug Bounty writeups, Vulnerability Research, Tutorials, Tips&Tricks☆211Aug 7, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,507Oct 12, 2024Updated last year
- My CTF journey since 2015. Stats, writeups, code snippets, notes, challenges.☆583Feb 10, 2026Updated 4 months ago
- A Powerful Subdomain Takeover Tool☆966Oct 17, 2023Updated 2 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,300Aug 18, 2025Updated 10 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,496Sep 14, 2023Updated 2 years ago
- A collection of custom security tools for quick needs.☆3,306May 1, 2023Updated 3 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,954Sep 27, 2021Updated 4 years ago
- ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.☆727May 6, 2022Updated 4 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆759Apr 12, 2022Updated 4 years ago
- Git All the Payloads! A collection of web attack payloads.☆3,959May 15, 2023Updated 3 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,033Feb 5, 2021Updated 5 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆219Oct 12, 2024Updated last year
- Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ …☆10,240Jun 24, 2026Updated last week
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Multi Tool Subdomain Enumeration☆722Apr 11, 2021Updated 5 years ago
- Miscellaneous exploit code☆1,573Oct 6, 2023Updated 2 years ago
- Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet☆5,562Dec 12, 2024Updated last year
- DNS Takeover tool written in Go☆2,100Mar 16, 2026Updated 3 months ago
- Find exploits in local and online databases instantly☆1,836Sep 27, 2021Updated 4 years ago
- PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with othe…☆3,744Sep 13, 2023Updated 2 years ago
- Awesome XSS stuff☆5,125Oct 30, 2024Updated last year
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,807Mar 23, 2022Updated 4 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,499Oct 1, 2025Updated 9 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- This tool can be used to brute discover GET and POST parameters☆1,396Aug 24, 2019Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,219Jul 31, 2024Updated last year
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆166Nov 6, 2019Updated 6 years ago
- Collection of the cheat sheets useful for pentesting☆4,351Feb 16, 2024Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,807Apr 26, 2024Updated 2 years ago
- A Modern Orchestration Engine for Security☆6,444Jun 1, 2026Updated last month
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,499Jan 9, 2025Updated last year
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,192Dec 11, 2022Updated 3 years ago
- List of Awesome Asset Discovery Resources☆2,693Jan 22, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A collection of hacks and one-off scripts☆2,499Mar 13, 2025Updated last year
- a package of Pentest scripts I have made or commonly use☆640Apr 21, 2026Updated 2 months ago
- A python script that finds endpoints in JavaScript files☆4,398Apr 13, 2024Updated 2 years ago
- ☆2,322Jun 10, 2026Updated 3 weeks ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆89May 6, 2023Updated 3 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆632Feb 5, 2019Updated 7 years ago
- Finds unknown classes of injection vulnerabilities☆712Apr 30, 2025Updated last year