Simple python3 compatible version of BinaryCookieReader

PoC tapjacking app for Android < 11

Burp Suite Bambda useful scripts.

[Beta testing] Android bruteforcing tool for apps pentesting, simulating manual user typing with adb

TriplEx (for Exported Extras Extraction) is a python script that is designed to search exported intents extras in decompiled APKs for a faster pentest and bug bounty recon.

PoC XSS scripts and HTMLi for BB

Some useful files for upload features pentesting

QRecipe is a simple python script that have been designed to fuzz Android and iOS apps QR code readers for multiple vulnerabilities depending on the given wordlist.

A collection of semgrep rules for android apps static analysis and code review

CVE-2018-25031 tests

Some Dorking resources

Burp certificate installer for Android emulator

Offensive cybersecurity labs

Simple bash script that aim to save time on security code and config review for web technologies.

Python script to easily use remote whois registries from local HTTP server (for pentesting purposes)

Recon tool using shodan API to automate shodan information gathering process and find juicy stuff during bug hunting.

Simple bash dependency confusion checker (npm, python and ruby)

ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, RCE and Open redirect

Notes and ressources from Burp Suite Academy learning

Simple python OSINT tool for urls recon thanks to the waybackmachine.

Passive Vulnerability Scanner working with Wappalyzer API and MITRE CVE search functionnality.

A simple Twitter OSINT tool written in python

Collection of malduino scripts for pentesters and red teaming.