WiFi security auditing tools suite

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

OpenPGP implementation for JavaScript

Awesome XSS stuff

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

A collective list of public APIs for use in security. Contributions welcome

Automated & Manual Wordlists provided by Assetnote

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.

OWASP API Security Project

Checklist of the most important security countermeasures when designing, testing, and releasing your API

Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.

Contextual Content Discovery Tool

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

Useful Google Dorks for WebSecurity and Bug Bounty

A collection of hacks and one-off scripts

Javascript Hacking Code

The ZAP core project

JavaScript API for Chrome and Firefox

A collection of PDF/books about the modern web application security and bug bounty.

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

E4GL30S1NT - Simple Information Gathering Tool

Fetch and watch temporary phone number from your console

The best WiFi spy avalaible for hire! Made for hackers, for hackers

KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.