Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts

Autonomous AI-powered security scanner — multi-agent vulnerability detection, exploitation, and validation engine

Web Path Finder

A fully automated subdomain reconnaissance and sensitive data discovery toolkit.

CRLF Bug scanner for WebPentesters and Bugbounty Hunters

CyberSec Resources: FRAMEWORKS & STANDARDS; Pentesting Audits & Hacking; PURPLE TEAMING, AD, API, web, clouds, CTF, OSINT, Pentest tools, Network Security, Privilege escalation, Exploiting, Reversing, Secure Code, Bug Bounty, ...

The simplest way to integrate your subdomain enum outputs with Burp Pro (Fast Crawler)

BurpFlow is one of the best Burp Suite automation tools for bug bounty hunters and penetration testers, widely used to load recon data via proxy and streamline web application security testing workflows.

This repository contains learning resources for students.

Subdomain enumeration tool

Web pentest kickstarter

This is an intentionally vuln webpage designed to practice XSS.

This tool is use to search for some hidden directories on any website that generally they don't allow to look in but can be found as very important for exploiter.

Notes and Practical Projects for learning PHP while my learning journey

A comprehensive web security analysis tool that performs automated reconnaissance and vulnerability scanning on websites. WebReconX provides real-time insights into web technologies, security configurations, and potential vulnerabilities.

a centralized pentesting arsenal, containing essential tools, scripts, and binaries. it is designed to streamline the setup of a new security testing environment by making a comprehensive toolkit available via a single git clone

open redirection scanner