Quickly Bruteforce in Burp Suite, multiple website with each website bruteforced alternatively, Small memory footprint which will help while multiple websites with Large Wordlist - jovisinfosolutio...

Aegis — exploit-catalog-driven smart contract security auditing. Evaluate any target against a library of studied real-world DeFi exploits to find and fix vulnerabilities, with runnable PoCs. - nov...

Proof of Concept exploit for CVE-2026-26899 in OpenWrt luci-app-https-dns-proxy - iwallplace/CVE-2026-26899-OpenWrt-Exploit

Public advisory & PoC for CVE-2026-26897 — Deep Link Bypass in EcoOnline EHS Android (com.airsweb.v10), fixed in 0.2.500 - iwallplace/CVE-2026-26897-EcoOnline-DeepLink

Automatic bug bounty detection system, written by in python. DETECTS: XSS, SQLi, LFI, SSRF, Open Redirect, Headers - mrch4n725/bugbounty-hunter

YARA 룰 기반 악성코드 탐지 대시보드 | SK쉴더스 루키즈 프로젝트. Contribute to WONJEONGIM/malware-analysis-dashboard development by creating an account on GitHub.

Contribute to am-hotstuff819/cve-watch development by creating an account on GitHub.

Contribute to ayuxsec/awesome-burp-extensions development by creating an account on GitHub.

SOC analyst lab: threat detection, brute force alerting, C2 attack simulation, and incident investigation using Elasticsearch, Kibana, Sysmon, and Mythic. - rsn9454/soc-home-lab

Unauthenticated SSRF in Xiaomi Mi Router 4A Gigabit Edition (firmware 3.0.24) via Host Header Injection — CVE-2026-26898 - iwallplace/CVE-2026-26898-Xiaomi-SSRF-HostHeaderInjection

Este repositorio contiene un Proof of Concept (POC) para CVE-2026-49975, también conocida como HTTP/2 Bomb, una vulnerabilidad de denegación de servicio (DoS) remoto que afecta a la mayoría de los ...

CVE analysis of CVE-2025-40536, SolarWinds Web Help Desk security control bypass (CVSS 8.1). Covers vulnerability mechanics, attack chain with companion RCE CVEs, Storm-2603 threat actor attributio...

Minimal Perl FFI bindings for the YARA malware scanning engine. - manwar/YaraFFI

Contribute to PentesterFlow/Burp-Integration development by creating an account on GitHub.

One Box to Rule Them All! HexBox is a Raspberry Pi 3B-based red team platform that orchestrates Hak5 hardware (Pineapple, Shark Jack, Squirrel, Turtle, OMG Plug, Bash Bunny), Flipper Zero, and Sliv...

Contribute to phamtuan79/waf-bypass-discrepancy-detector development by creating an account on GitHub.

Burp Suite extension that extracts and analyzes LinkedIn profile data from HTTP responses - godylockz/linkedin-scraper

Kubernetes-native continuous security control validation for federal systems - primaris-tech/sidereal

A modern, dependency-free weather app built with vanilla JavaScript (ES6+). Search any of 8 cities to view temperature, wind, humidity, and visibility from local JSON demo data. Features a responsi...

webScan 是一款基于 Kali Linux 和 AI 多智能体协作的网站安全风险自动化监测评估系统，输入 URL 后通过 5 个并行智能体协同执行信 息收集、爬虫、漏洞扫描、弱口令检测和安全事件分析，最终输出包含资产画像、五维风险评分、漏洞详情与整改建议的 Markdown + HTML 双格式报告。 - zhangshilin-cn/webScan