💊 Application to use ReVanced on Android

Learn Go with test-driven development

🤪 A list of funny and tricky JavaScript examples

roadmap for a self-taught hacker

A deliberately vulnerable web application for learning web application security.

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

A vulnerable version of Rails that follows the OWASP Top 10

📚 Freely available programming books

Subdomain Takeover tool with web UI

A tool for append URLs, skipping duplicates/paths & combine parameters.

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

A simple Bash one liner with aim to automate CRLF vulnerability scanning.

A tool for adding new lines to files, skipping duplicates

Pull out bits of URLs provided on stdin

🗃 Open source self-hosted web archiving. Takes URLs/browser history/bookmarks/Pocket/Pinboard/etc., saves HTML, JS, PDFs, media, and more...

API Documentation Browser

A curated list wordlists for bruteforcing and fuzzing

Repo of all the default wordlists included in Kali. Convienent if you're using something other than Kali.

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

A simple Python wrapper for the archive.is capturing service

A golang utility to spider through a website searching for additional links.

A collection of awesome one-liner scripts especially for bug bounty tips.

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

Just simple bait to get Ua and IPaddress from your victim.