OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

A vulnerable iOS App with Security Challenges for the Security Researcher inside you.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Beta release

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more...

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Application Security Verification Standard

Oversecured Vulnerable Android App

A collection of awesome penetration testing resources, tools and other shiny things

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

Tools for Hacking

pull decrypted ipa from jailbreak device

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Android Apps, Roms and Platforms for Pentesting

Tools for Bug Hunting

A curated list of awesome OSCP resources

OWASP ASVS checklist for audits

A forensic collection tool written in Python.

This repository contains all the Talk slides that I have given at various security conferences, events & meetups.

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

Sample Web App with Maven for Jenkins Demo

This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro…

List of awesome penetration testing resources, tools and other shiny things

A Collection of Android Pentest Learning Materials