Skip to content
View MrHonkster's full-sized avatar

Block or report MrHonkster

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Showing results

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Go 88,602 13,559 Updated Dec 19, 2024

Autogenerate static GraphQL API documentation

JavaScript 1,122 120 Updated Dec 16, 2024

XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.

HTML 313 78 Updated Jun 1, 2022

GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations

298 28 Updated Nov 25, 2023

Automated All-in-One OS Command Injection Exploitation Tool.

Python 4,657 822 Updated Dec 20, 2024

A collection of one-liners for bug bounty hunting.

1,251 195 Updated Oct 24, 2024

A collection of awesome one-liner scripts especially for bug bounty tips.

2,727 586 Updated Jul 29, 2024

The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

TypeScript 338 35 Updated Oct 3, 2023

Deserialization payload generator for a variety of .NET formatters

C# 3,275 477 Updated Dec 23, 2024

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Go 3,843 431 Updated Dec 19, 2024

Most advanced XSS scanner.

Python 13,472 1,916 Updated Aug 2, 2024

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Python 3,225 324 Updated Nov 21, 2024

Tool to find JavaScript files on Websites

Shell 514 95 Updated Nov 2, 2023

Accept URLs on stdin, replace all query string values with a user-supplied value

Go 776 126 Updated Nov 23, 2022

Pull out bits of URLs provided on stdin

Go 1,105 124 Updated Aug 12, 2023

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

Python 1,798 206 Updated Dec 9, 2024

declutters url lists for crawling/pentesting

Python 1,229 149 Updated Dec 7, 2024

Finding XSS during recon

Go 252 42 Updated Sep 13, 2022

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Go 1,743 159 Updated Nov 18, 2024

Collection grep patterns for Tomnomnom tools namely gf

40 13 Updated Oct 15, 2020

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Go 4,070 459 Updated Oct 28, 2024

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

1,240 281 Updated Sep 13, 2024

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

5,193 1,063 Updated Aug 14, 2024

Learn Blockchain, Solidity, and Full Stack Web3 Development with Javascript

12,805 3,057 Updated Jun 12, 2024

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

C# 16,487 3,129 Updated Dec 22, 2024

A collection of tools to perform searches on GitHub.

Python 1,363 344 Updated Feb 9, 2023

40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...

Go 1,662 286 Updated Jul 3, 2023

HTTP parameter discovery suite.

Python 5,349 801 Updated Dec 17, 2024

List of Google Dorks for sites that have responsible disclosure program / bug bounty program

1,255 393 Updated Jul 19, 2023
Next
Showing results