The Book Of Secret Knowledge

Mozilla HTTP Observatory

Command line utility for searching and downloading exploits

A DNS reconnaissance tool for locating non-contiguous IP space.

Library consisting of explanation and implementation of all the existing attacks on various Encryption Systems, Digital Signatures, Key Exchange, Authentication methods along with example challenges from CTFs

CORS Misconfiguration Scanner

A command-line client for SQL Server with auto-completion and syntax highlighting

Wordlists for creating statistically likely username lists for use in password attacks and security testing. Used for pentesting for over 10 years with amazing results.

A replacement for AB (Apache Bench)

A Game of Hackers (CTF Scoreboard & Game Manager)

Automated System Hardening Framework

DNS Measurement, Troubleshooting and Security Auditing Toolset

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.

Damn Small Vulnerable Web

An archive of low-level CTF challenges developed over the years

a package of Pentest scripts I have made or commonly use

Dump unix domain socket traffic with bpf

h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply

A curated list of all machine learning algorithms and deep learning algorithms grouped by category.

Scoreboard for Capture The Flag competitions.

A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0

Coursera Stanford Cryptography 1 - Thought by Prof. Dan Boneh

Pure python, SSL/TLS protocol and cipher scanner/enumerator.