Stars
This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Obsidian
Open Source Intelligence Interface for Deep Web Scraping
File upload vulnerability scanner and exploitation tool.
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
The Swiss Army knife for automated Web Application Testing
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
Dissect triage script for Citrix NetScaler devices
A collection of one-liners for bug bounty hunting.
Browser Chrome extensions, to help with OSINT, OPSEC, Privacy & Obfuscation.
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widesprea…
Collection of methodology and test case for various web vulnerabilities.
Awesome list of step by step techniques to achieve Remote Code Execution on various apps!