007nicky

007nicky's Stars

• skylot/jadx

  Dex to Java decompiler

  Language:Java41.7k8171.7k4.9k

• EdOverflow/can-i-take-over-xyz

  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

  Language:Python4.9k129239717

• pry0cc/axiom

  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

  Language:Shell4k89427642

• reddelexc/hackerone-reports

  Top disclosed reports from HackerOne

  Language:Python3.9k14710716

• internetwache/GitTools

  A repository with 3 tools for pwn'ing websites with .git repositories available

  Language:Shell3.9k8925625

• arkadiyt/bounty-targets-data

  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

  3.2k2370588

• six2dez/OneListForAll

  Rockyou for web fuzzing

  Language:Shell2.6k464469

• iddoeldor/frida-snippets

  Hand-crafted Frida examples

  Language:JavaScript2.3k7618417

• ssl/ezXSS

  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

  Language:PHP1.9k54131331

• B3nac/Android-Reports-and-Resources

  A big list of Android Hackerone disclosed reports and other resources.

  1.5k931303

• exentriquesolutions/nip.io

  Language:Python1.4k2228151

• kkrypt0nn/wordlists

  📜 A collection of wordlists for many different usages

  1.2k229241

• jdonsec/AllThingsSSRF

  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location

  1.2k663231

• projectdiscovery/public-bugbounty-programs

  Community curated list of public bug bounty and responsible disclosure programs.

  Language:Go1k5329360

• sw33tLie/bbscope

  Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

  Language:Go1k2047145

• emadshanab/Nuclei-Templates-Collection

  Nuclei Templates Collection

  Language:Python903305238

• fyoorer/ShadowClone

  Unleash the power of cloud

  Language:Python732136298

• narfindustries/http-garden

  Differential fuzzing REPL for HTTP implementations.

  Language:Python712116064

• orwagodfather/WordList

  Language:PHP657130266

• oversecured/ovaa

  Oversecured Vulnerable Android App

  Language:Java65264155

• xnl-h4ck3r/XnlReveal

  A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements.

  Language:JavaScript3099449

• eMVee-NL/MindMap

  This is a collection of some of mine mindmaps abount pentesting created with Obsidian.

  28212052

• SAPT01/HBSQLI

  Automated Tool for Testing Header Based Blind SQL Injection

  Language:Python2624361

• 0x999-x/jsluicepp

  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice

  Language:Python2453624

• xnl-h4ck3r/knoxnl

  This is a python wrapper around the amazing KNOXSS API by Brute Logic

  Language:Python21342332

• putsi/privatecollaborator

  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate

  Language:Shell20441344

• teknogeek/get_schemas

  Print out URL schemas from an Android app

  Language:Python1133041

• externalist/presentations

  Some presentations I did in the past

  64907

• inesmartins/Android-App-Link-Verification-Tester

  Checks if an Android application has successfully completed the "App Link Verification" process for Android App Links.

  Language:Python481915

• Kashkovsky/CVE-2021-40438

  Apache forward request CVE

  Language:Go17201