Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.

Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utilized by bug hunters, penetration testers, and security enthusiasts during their reconnaissance and vulnerability assessment processes.

A List Of Labs For People (Students) Who Want Learn OR Practice IT Security / Hacking / Penetration Testing In Ethical Way.

Sifter - All purpose penetration testing op-center

Web Path Finder

A research project to add some brrrrrr to Burp

Facebook Write-ups, PoC, and exploitation codes:

Script for monitoring changes in javascript files on WebApps for offensive reconnaissance.

CVE-2022-44268 ImageMagick Arbitrary File Read - Proof of Concept exploit

This repository contains writeups for Damn Vulnerable Web Application (DVWA).

A cross site scripting command and control notification server

Extract domains/subdomains/FQDNs from files and URLs

Automated Penetration Testing

ELRO-Security is an advance & free WAF (Web Application Firewall), It is using to defend servers and especially websites around the internet. It is very easy to install and allow websites owner to add their own website via a web application interface which makes it accessible for almost everyone regardless of the level of codding.

GoFuzz is a simple and efficient open-source fuzzing scanner designed to discover directories and files on a target web server or application.

performs various mutations on IPv4 addresses, such as converting to binary, hex, octal, urlencoded, and more

ქართული Web Application Scanner დამწყები პენტესტერებისთვის

web application penetration testing and security notes.

Web Application Penetration Tester (WAPT) Notes