000MB000

000MB000's Stars

• dolevf/Black-Hat-Bash

  The Black Hat Bash book repository

  Language:PHP21957

• tmux-plugins/tpm

  Tmux Plugin Manager

  Language:Shell12.5k436

• LaurieWired/ReverseEngineeringAndroidMalware

  This contains notes and slides for my talk on Reverse Engineering Android Malware

  435

• LaurieWired/ARTful

  The ARTful library for dynamically modifying the Android Runtime

  Language:C++31730

• skylot/jadx

  Dex to Java decompiler

  Language:Java42.5k5k

• Hackmanit/Web-Cache-Vulnerability-Scanner

  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

  Language:Go901131

• VSCodium/vscodium

  binary releases of VS Code without MS branding/telemetry/licensing

  Language:Shell26k1.2k

• swisskyrepo/GraphQLmap

  GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

  Language:Python1.4k200

• daveshap/BSHR_Loop

  BSHR "Basher" Loop: Brainstorm, Search, Hypothesize, Refine

  Language:Jupyter Notebook22638

• zigoo0/JSONBee

  A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.

  Language:PHP684108

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell5.9k946

• mandatoryprogrammer/xsshunter-express

  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!

  Language:JavaScript1.7k333

• KingOfBugbounty/KingOfBugBountyTips

  Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

  Language:Go4.3k833

• BishopFox/jsluice

  Extract URLs, paths, secrets, and other interesting bits from JavaScript

  Language:Go1.5k100

• tomnomnom/gron

  Make JSON greppable!

  Language:Go13.9k330

• akto-api-security/akto

  Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

  Language:Java1.1k213

• codingo/fastsub

  A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.

  Language:C++587

• codingo/dooked

  DNS and Target HTTP History Local Storage and Search

  Language:C++6414

• codingo/guides

  A companion repo to accompany detailed guides and YouTube content to allow users to follow along

  13

• codingo/bbr

  An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

  Language:Go20735

• codingo/awsScrape

  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.

  Language:Go31

• michenriksen/aquatone

  A Tool for Domain Flyovers

  Language:Go5.7k884

• tomnomnom/meg

  Fetch many paths for many hosts - without killing the hosts

  Language:Go1.6k269

• projectdiscovery/httpx

  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

  Language:Go8k862

• projectdiscovery/subfinder

  Fast passive subdomain enumeration tool.

  Language:Go10.9k1.3k