CVE-2025-55182-research
CVE-2025-55182 POC
CVE-2025-55182
Explanation and full RCE PoC for CVE-2025-55182
react2shell-scanner
High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)
React2Shell-CVE-2025-55182-original-poc
Original Proof-of-Concept's for React2Shell CVE-2025-55182
Next.js-RSC-RCE-Scanner-CVE-2025-66478
A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.
Burp Suite CE
Integrated platform for web application security testing.
Caido
A lightweight web security auditing toolkit.
FoxyProxy
FoxyProxy is an open-source, advanced proxy management tool that completely replaces Firefox's limited proxying capabilities. No paid accounts are necessary; bring your own proxies or buy from any vendor. The original proxy tool, since 2006.
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
You-Dont-Know-JS
A book series (2 published editions) on the JS language.
awesome-go
A curated list of awesome Go frameworks, libraries and software
free-for-dev
A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
terminal
The new Windows Terminal and the original Windows console host, all in the same place!
Bug Bounty Daily
Curated collection of essential articles for bug bounty hunters.
fzf
:cherry_blossom: A command-line fuzzy finder
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
sherlock
Hunt down social media accounts by username across social networks
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.