Highlights
-
can-i-take-over-xyz Public
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Python 4,972 733 Creative Commons Attribution 4.0 International 3 issues need help UpdatedJan 11, 2025 -
security-template Public
A static website template for security pages.
-
-
bugbounty-cheatsheet Public
A list of interesting payloads, tips and tricks for bug bounty hunters.
-
bugbountyguide Public
Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.
-
sapp Public
Forked from facebook/sappPost Processor for Facebook Static Analysis Tools.
-
swiss-bugbounty-programs Public
Forked from antoinet/swiss-bugbounty-programsList of bug bounty programs of companies/organisations in Switzerland
-
society-website Public
Forked from WarwickCyberSoc/society-websiteWebsite source for the WMG Cyber Society.
-
netkit-jh-build Public
Forked from netkit-jh/netkit-jh-buildBuild scripts for the kernel, filesystem and assisting scripts/programs for Netkit-JH.
-
cryptojourney-content Public archive
Learn the basics of cryptography throughout history.
-
netkit-jh.github.io Public
Forked from netkit-jh/netkit-jh.github.ioNetkit-JH documentation
-
hack-your-university Public
Forked from cablej/hack-your-universityA list of universities with vulnerability disclosure policies
-
contact.sh Public
An OSINT tool to find contacts in order to report security vulnerabilities.
-
legal-bug-bounty Public
#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.
-
proof-of-concepts Public archive
A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
-
propaganda Public
Generate a personal Jekyll website using your Bibtex references.
-
smith Public archive
Simple wrapper for meg that sieves through meg's output for you.
-
-
megplus Public archive
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
-
h1-cli Public
A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.
-
curate Public archive
A tool for fetching archived URLs (to be rewritten in Go).
-
hacks Public
Some random scripts. Just trying to be like the cool kids.
-
-
bug-bounty-responses Public
A collection of response templates for invalid bug bounty reports.
-
security-policy-specification-standard Public archive
This document proposes a way of standardising the structure, language, and grammar used in security policies.
-
bounty-pls Public
A Chrome extension that spices up those #togetherwehitharder tweets.
-
slides Public
Slides from my past talks.
-
bounty-formula Public archive
A formula to calculate bounty amounts.
-
hackerone-security-policy Public archive
This is the security policy for https://hackerone.com/ed.
-
hunter Public archive
Guidelines for writing secure code for Python developers.