security-research

🎯 SQL Injection Payload List

🎯 Command Injection Payload List

🦄 A curated list of the awesome resources about the Vulnerability Research

Subdomain takeover vulnerability checker

Open-source vulnerability disclosure and bug bounty program database

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

🎯 RFI/LFI Payload List

Hacker, ready for more of our story ! 🚀

🔎 shodansploit > v1.3.0

Metasploit Cheat Sheet 💣

Fuzz Introspector -- introspect, extend and optimise fuzzers

large hashcat rulesets generated from real-world compromised passwords

PHP Security Check List [ EN ] 🌋 ☣️

Jaws is an invisible programming language! Inject invisible code into other languages and files! Created for security research -- see blog post

tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size

📡🐧 Linux kernel syscall implementation tracker

MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.

🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)

A curated list of awesome baseband research resources

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.