gujjuboy10x00
Follow
Stars
gujjuboy10x00 / bagbak
Forked from ChiChou/bagbakYet another frida based iOS dumpdecrypted. Also decrypts app extensions
OpenAI ChatGPT, GPT-3, GPT-4, DALL·E, Whisper API wrapper for Go
Differential fuzzing REPL for HTTP implementations.
jsleak is a tool to find secret , paths or links in the source code during the recon.
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
Python script to parse JSON data exported from SHODAN nad create IP:PORT list to use with other tools
Free, libre, effective, and data-driven wordlists for all!
PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
Extract URLs, paths, secrets, and other interesting bits from JavaScript
Obtain GraphQL API schema even if the introspection is disabled
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
Work in progress...
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
An XSS exploitation command-line interface and payload generator.
User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!