A curated list of penetration testing and ethical hacking tools, organized by category. This compilation includes tools from Kali Linux and other notable sources.

This repo includes ChatGPT prompt curation to use ChatGPT and other LLM tools better.

🐙 Guides, papers, lecture, notebooks and resources for prompt engineering

Generates permutations, alterations and mutations of subdomains and then resolves them

A DNS meta-query spider that enumerates DNS records, and subdomains.

**SubHunterX** is an automated tool for subdomain enumeration, vulnerability scanning, and exploitation. It discovers subdomains, detects live hosts, fuzzes directories, scans ports, identifies vul…

declutters url lists for crawling/pentesting

OnionScan is a free and open source tool for investigating the Dark Web.

Scrapy, a fast high-level web crawling & scraping framework for Python.

Dark Web OSINT Tool

Bugcrowd’s baseline priority ratings for common security vulnerabilities

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Nuclei-AI-Prompts

Contact form for your website with easy to use dashboard, works as a plugin for Filament Admin Panel

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

Automation for javascript recon in bug bounty.

A fast WordPress plugin enumeration tool

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Collection of Cyber Threat Intelligence sources from the deep and dark web

Send notification to users using notification templates and multi notification channels, it's support Filament Native Notification Service with macro, and a full integration to FCM service worker n…

This Filament plugin empowers you to transform your auth pages with ease, allowing you to make them truly stand out. It offers a flexible alternative to the default auth pages in the Filament Panel…

Customized CVE FEED Notifier

A collection of beautiful full-stack components for Laravel. The perfect starting point for your next app. Using Livewire, Alpine.js and Tailwind CSS.

The easiest way to run WireGuard VPN + Web-based Admin UI.

A collection of awesome one-liner scripts especially for bug bounty tips.

IIS shortname scanner written in Go

Diff, match and patch text in Go

JSNinja is a powerful tool designed for security researchers and developers looking to extract sensitive information and Urls from JavaScript files.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.