A comprehensive cheatsheet for cyber security, collecting common attack payloads and bypass techniques for penetration testing and CTF competitions, ideal for security researchers to reference quickly.

SecLists is the essential dictionary for security testers, collecting usernames, passwords, URLs, and more to help you complete security assessments quickly.

Sniffnet is a cross-platform network monitoring tool that lets you visually track all internet activity on your device with no command-line needed.

A powerful website analysis tool that scans server details, security settings, performance, and tech stack with one click, revealing the truth behind any site.

A tool to help you set up a personal secure VPN in the cloud with one click, supporting multi-device connections and privacy protection, no complex configuration needed.

One-click script to set up a private IPsec encrypted VPN server, allowing secure access to your home network from anywhere.

An open-source Single Sign-On and Multi-Factor Authentication gateway that adds a unified security lock to your self-hosted web apps.

A comprehensive collection of cybersecurity resources curated by Omar Santos, including thousands of tools and learning materials for penetration testing and security research.

radare2 is a professional command-line reverse engineering tool that helps you deeply analyze software, viruses, and binary files, essential for security researchers and hackers.

Turns the operating system into a database, allowing you to monitor processes, files, and security using SQL queries, ideal for ops and security teams.

An automated mobile app security testing tool that helps you check Android and iOS apps for vulnerabilities, suitable for security testers.