The all-in-one browser extension for offensive security professionals 🛠

🦄 🦄 🦄 Peripheral smart contracts for interacting with Uniswap v3

渗透测试Payload速查平台 | Pentest Payload Quick Reference | XSS/SQLi/SSRF/RCE | React+TypeScript

The AI Agent for Cyber Security.

AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by MITRE ATT&CK (2,000+ Atomic tests), CIS Benchmarks (1,500+ controls), OWASP, NIST. Lazy-loading, zero context pollution. Your AI red team.

[ARCHIVED] Evolved into BugTraceAI v2 — github.com/BugTraceAI/BugTraceAI

🔍 Chrome扩展，为安全研究和渗透测试提供Google/百度/Bing高级搜索语法快捷执行。一键Dorking、批量提取URL、智能过滤黑名单，大幅提升信息收集效率。 🔍 Chrome extension for security research and penetration testing. One-click advanced search (Dorking) on Google/Baidu/Bing, bulk URL extraction, smart blacklist filtering. Boost OSINT efficiency.

A Modern Bug Bounty and Security Research Management Platform

Red Kite, the Extensible Attack Surface Management tool.

If you found this, you are among the truly lucky, to be given providence to my curated and often custom wordlists. Enjoy, buddy, you've earned it.

Monitoring Monster (MonMon) is a monitoring tool for bug bounty hunters. It tracks changes across subdomains, HTTP endpoints, shell command output, and bug bounty program scopes. When something changes, you get alerted on Telegram, Discord and others.

OSINT intelligence MCP server for AI agents — 37 tools, 12 sources. Shodan, VirusTotal, Censys, SecurityTrails, DNS reconnaissance, WHOIS, certificate transparency, BGP routing, Wayback Machine, GeoIP. Automated open source intelligence and attack surface mapping via Model Context Protocol.

A modern, browser-based reconnaissance dashboard built for security professionals and bug bounty hunters.

🪲 Bug Buster, a bug bounty platform powered by Cartesi Rollups

This repository contains a POC of CVE-2025-55182, a critical (CVSS score 10.0) pre-authentication remote code execution vulnerability affecting React Server Components, also known as React2Shell.

Opensource google dork engine with extensive collection of google dorks!

Sleek command generator and resource hub for bug bounty hunters. Enter your target, get instant commands for recon, fuzzing, XSS, SQLi & more.

The first browser MCP built for security testing. Give your AI agent a real Firefox browser and let it find vulnerabilities.

A Chrome DevTools side-panel extension for human-driven security testing. Capture, modify, validate, and replay HTTP requests inside the browser with semantic diffing and RFC-aware formatting.

Multi-Container Firefox Extension for Security Testing and BugBounty Hunters.