This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Obsidian

Open Source Intelligence Interface for Deep Web Scraping

File upload vulnerability scanner and exploitation tool.

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.

OSCP Cheatsheet by Sai Sathvik

An IIS short filename enumeration tool

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

A pretty sweet vulnerability scanner

The Swiss Army knife for automated Web Application Testing

NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications

Dissect triage script for Citrix NetScaler devices

A collection of one-liners for bug bounty hunting.

Browser Chrome extensions, to help with OSINT, OPSEC, Privacy & Obfuscation.

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widesprea…

Collection of methodology and test case for various web vulnerabilities.

Awesome list of step by step techniques to achieve Remote Code Execution on various apps!