- São Paulo, Brazil
Stars
🎯 Command Injection Payload List
CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report of phishing sites based off your keywords and Top level Doma…
Tool designed to help identify open Elasticsearch servers that are exposing sensitive information
IP obfuscator made to make a malicious ip a bit cuter
A Python module to scrape several search engines (like Google, Yandex, Bing, Duckduckgo, ...). Including asynchronous networking support.
Extract OLEv1 objects from RTF files by instrumenting Word
Android app allowing users to use their own Visa Magstripe data to perform NFC payments in North America
Official Python client for Elasticsearch
👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍
🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯
Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.
Source code for Hacker101.com - a free online web and mobile security class.
DVR-Exploiter a Bash Script Program Exploit The DVR's Based on CVE-2018-9995
⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
a collection of simple demos of React.js
⚡ Web Debugging Proxy based on Chrome DevTools Network panel.
HTTP Man In The Middle (MITM) Proxy
A Python module to create Brazilian "Boletos de Cobrança" for multiple banks
Some of the vulnerabilities that were found by Cybellum platform
This tool is based on regex with effective standards for detecting phishing sites in real time using certstream and can also detect punycode (IDNA) attacks.
A list of interesting payloads, tips and tricks for bug bounty hunters.