vapt

A Python3 based C2 server to make life of red teamer a bit easier. The payload is capable to bypass all the known antiviruses and endpoints.

Plugin for JADX to integrate MCP server

eLearnSecurity Junior Penetration Tester (eJPT) v2 Notes

A MCP Server for APK Tool (Part of Android Reverse Engineering MCP Suites)

MCP server for JADX-AI Plugin

Physical penetration testing is a critical aspect of security assessment that involves simulating real-world attacks to evaluate the effectiveness of physical security controls.

MCP Client which serves as bridge between mcp servers and local LLMs running on Ollama, Created for MCP Servers Developed by Me, However other MCP Servers may run as well

This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer while hunting. It is still under development, so feel free to contribute.

A simple Dockerfile to build an image starting from the latest official one of Kali Linux and including some useful tools.

The iOS Buster is a groundbreaking penetration testing tool for iOS, capable of performing both static and dynamic testing. It provides detailed reports, including STR, highlighting discovered vulnerabilities. It serves as a valuable addition to MobSF.

🛡️ 🌐 🥷🏻 Everything CyberSecurity Related 🏴‍☠️ 👾 🕵🏾

SCOPE [Shadow Cache Observation, Poisoning & Evaluation] is a powerful tool designed to help you find and test vulnerabilities in subdomains that might be exposed to cache poisoning attacks. If a website isn't properly handling cache, it could lead to security issues where malicious content gets stored and served to users.

BurpSuite Extension leveraging new Montoya API to automatically sets payload positions to your inruder tab saving you time during VAPT.

This is Web Application Penetration Testing Report made for everybody who wanted a glance of how to make a professional report for pentetring purpose. The penetration testing has been done in a sample testable website.

All things Cybersecurity!

Project Davinci, led by Government Engineering College (GEC) Thrissur, focuses on "Secure-KTU," enhancing the security of the KTU website. The project assesses vulnerabilities per NCIIPC RVDP standards, addressing threats like data breaches and unauthorized access, ensuring safer online services.

CyberSecurity Interview Questions

Postman-API-Count is a tool that simplifies the extraction and analysis of APIs from Postman collections. It allows users to extract APIs based on specific HTTP methods, identify APIs without any defined methods, and retrieve the total count of APIs in a collection. This tool is beneficial for developers and testers working with Postman collections

PYTHA-SHELL is an educational cybersecurity tool featuring an RCE mode. It offers practical examples and demonstrations to help students understand various attacks and vulnerabilities in a controlled environment. PYTHA-SHELL provides hands-on experience with real-world security risks making it a valuable resource for learning and teaching

History of tasks related to DevOps, Cloud and Security.