serialkiller5605
Follow
Stars
CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues
A python script that finds endpoints in JavaScript files
HostHunter a recon tool for discovering hostnames using OSINT techniques.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
Directory/File, DNS and VHost busting tool written in Go
Subdomain discovery using Sublist3r, certspotter, crt.sh , censys and amass . Subdomain bruteforcing using Gobuster and Resolve hosts using tomnomnom's filter-resolved.
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
A collection of tools to perform searches on GitHub.
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Open-source vulnerability disclosure and bug bounty program database
This script is intended to automate your reconnaissance process in an organized fashion
Gospider - Fast web spider written in Go
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
A curated list of awesome Hacking tutorials, tools and resources
In-depth attack surface mapping and asset discovery
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.