declutters url lists for crawling/pentesting

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Fetch all the URLs that the Wayback Machine knows about for a domain

Runtime code generation for the Java virtual machine.

Most advanced XSS scanner.

Reverse engineering JavaScript and CSS sources from sourcemaps

Inject a shared library (i.e. arbitrary code) into a live linux process, without ptrace

A python script to scan for Apache Tomcat server vulnerabilities.

Share Things Related to Java - Java安全漫谈笔记相关内容

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

All about bug bounty (bypasses, payloads, and etc)

SSRF plugin for burp Automates SSRF Detection in all of the Request

Web path scanner

A simple FOFA client written in JavaFX. Made by WgpSec, Maintained by f1ashine.

一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。支持MCP接入

The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.

A secure low code honeypot framework, leveraging AI for System Virtualization.

edb is a cross-platform AArch32/x86/x86-64 debugger.

实时监控github上新增的cve、自定义关键字、安全工具更新、大佬仓库监控，并多渠道推送通知

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…