Open Breach and Attack Simulation Platform

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.

🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.

Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

This repository contains tutorials and tools for working with IP search engines. Search engines that search all devices connected to the Internet and collect a lot of different information about th…

一个以fuzz为中心思想的被动扫描工具

Awesome XSS stuff

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

Nuclei Templates Collection

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Real-world infosec wordlists, updated regularly

The most exhaustive list of reliable DNS resolvers.

基于ARL v2.6.2版本源码，生成docker镜像进行快速部署，同时提供七千多条指纹

Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

ARL 资产侦察灯塔系统（可运行，添加指纹，提高并发，升级工具及系统，无限制修改版） | ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Automated & Manual Wordlists provided by Assetnote

List of Awesome Asset Discovery Resources

Evilginx Phishing Engagement Infrastructure Setup Guide

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

Some wordlists collected form github to all bug bounty hunters.

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

a recon tool that allows searching on URLs that are exposed via shortener services

BlazeHTTP 是一款简单易用的 WAF 防护效果测试工具。BlazeHTTP stands as a user-friendly WAF protection efficacy evaluation tool.

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.