#
Amiirjr
Follow
Lists (11)
Starred repositories
A Burp Extension that makes it easier to view all script code on a Response.
jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
Custom scan profiles for use with Burp Suite Pro
A curated list of amazingly awesome Burp Extensions
Directory/File, DNS and VHost busting tool written in Go
Like cURL, but for gRPC: Command-line tool for interacting with gRPC servers
Standard Go Project Layout
40,000+ Nuclei templates for security scanning and detection across diverse web applications and services
A vulnerable RESTful application written in Node and React based on OWASP API security top 10 2023 edition.
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
Accept URLs on stdin, replace all query string values with a user-supplied value
A browser bookmark to show hidden fields and enable disabled fields on a web page
A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.
bash script for automating subdomain enumeration process either passive or active
🌐 Identify the technologies powering any website. This is a fork of the now deleted Wappalyzer project by @AliasIO and community.
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
A curated list of resources for learning about application security
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Collection of Facebook Bug Bounty Writeups
Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)
IPFuscator - A tool to automatically generate alternative IP representations
The recursive internet scanner for hackers. 🧡
Database to store previously found subdomains
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
