tk-t0n0y
Follow
Starred repositories
Rapidly enumerate subdomains and domains using rapiddns.io.
Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.
jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap's scripting abilities to discover information about services. Generate re…
A PHP backdoor management and generation tool/C2 featuring end to end encrypted payload streaming designed to bypass WAF, IDS, SIEM systems.
Subdomains enumeration, various scans and testing of some vulnerabilities.
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
wordlist of default username and password from many product who was scrap from http:https://open-sez.me
Automated learning of regexes for DNS discovery
🔐 A CLI tool to extract server certificates
Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.
Kunto is a bash tool created for the purpose of installing tools fast. Kunto uses bash scripts hosted on github-pages through which the tools which are not available to REPOS can be installed using…
A next-generation crawling and spidering framework.
📚 Freely available programming books
An app for forwarding SMS messages
ztgrace / docem
Forked from whitel1st/docemUility to embed XXE and XSS payloads in docx,odt,pptx,etc (OXML_XEE on steroids)