All my infosec notes I have been building up over the years
☆337Apr 28, 2026Updated 3 weeks ago
Alternatives and similar repositories for kb
Users that are interested in kb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A better dns bruteforcer written in golang☆13Nov 4, 2018Updated 7 years ago
- Crawl Google and Bing to find emails, subdomains and URLs associated to a target domain☆50Feb 2, 2021Updated 5 years ago
- JWT fuzzer☆107Jul 24, 2018Updated 7 years ago
- Red Team Tips as posted by @vysecurity on Twitter☆1,117Apr 26, 2020Updated 6 years ago
- Small scripts to assist in pentesting☆19Feb 2, 2021Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,881May 20, 2025Updated last year
- Albatar is a SQLi exploitation framework in Python☆137Jan 24, 2025Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,496Oct 12, 2024Updated last year
- ☆123Mar 27, 2017Updated 9 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Dec 12, 2018Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Mar 1, 2023Updated 3 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆378Oct 12, 2020Updated 5 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆608May 17, 2019Updated 7 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆684Jan 28, 2024Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Automatic tool for DNS rebinding-based SSRF attacks☆305Aug 21, 2020Updated 5 years ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,177May 26, 2023Updated 3 years ago
- A permutation generation tool written in golang☆212Jul 15, 2019Updated 6 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,802Apr 26, 2024Updated 2 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,747Dec 1, 2024Updated last year
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆660Feb 1, 2025Updated last year
- A tool for embedding XXE/XML exploits into different filetypes☆1,171Dec 16, 2024Updated last year
- Browser's XSS Filter Bypass Cheat Sheet☆1,152May 6, 2017Updated 9 years ago
- Fetch known urls from AlienVault's Open Threat Exchange for given hosts☆63Jul 22, 2019Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Wiki to collect Red Team infrastructure hardening resources☆4,485Oct 1, 2025Updated 7 months ago
- A tool that can help detect and takeover subdomains with dead DNS records☆12Aug 23, 2018Updated 7 years ago
- This tool can be used to brute discover GET and POST parameters☆1,395Aug 24, 2019Updated 6 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆305Oct 14, 2018Updated 7 years ago
- Red Team Scripts by d0nkeys (ex SnadoTeam)☆699Jul 27, 2020Updated 5 years ago
- A Powerful Subdomain Takeover Tool☆966Oct 17, 2023Updated 2 years ago
- Apache Solr Injection Research☆581Jan 28, 2020Updated 6 years ago
- offsec batteries included☆1,615Mar 11, 2024Updated 2 years ago
- Notes about attacking Jenkins servers☆2,096Jul 10, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- This application is developed to test the race condition vulnerability in the web application. We have discussed about this vulnerability…☆14Oct 1, 2016Updated 9 years ago
- Scan secrets from Continuous Integration Build Logs☆53Oct 14, 2019Updated 6 years ago
- secretz, minimizing the large attack surface of Travis CI☆326May 30, 2022Updated 3 years ago
- An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.☆5,945Oct 20, 2025Updated 7 months ago
- ☆334Jan 8, 2018Updated 8 years ago
- A Tool for Domain Flyovers☆5,937May 22, 2022Updated 4 years ago
- Data from my Sunday streams☆75Jul 28, 2019Updated 6 years ago