Ayoub5474

Ayoub5474's Stars

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python61.6k1.8k014.7k

• RustScan/RustScan

  🤖 The Modern Port Scanner 🤖

  Language:Rust14.8k134263998

• OJ/gobuster

  Directory/File, DNS and VHost busting tool written in Go

  Language:Go10.2k1602881.2k

• secfigo/Awesome-Fuzzing

  A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

  5.4k2249813

• streaak/keyhacks

  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

  5.1k106631.1k

• bitsadmin/wesng

  Windows Exploit Suggester - Next Generation

  Language:Python4.2k9655571

• almandin/fuxploider

  File upload vulnerability scanner and exploitation tool.

  Language:Python3.1k690496

• find-sec-bugs/find-sec-bugs

  The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

  Language:Java2.3k89437474

• gwen001/github-search

  A collection of tools to perform searches on GitHub.

  Language:Python1.4k3830342

• maK-/parameth

  This tool can be used to brute discover GET and POST parameters

  Language:Python1.3k3812193

• hahwul/jwt-hack

  🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

  Language:Go7661618103

• manoelt/50M_CTF_Writeup

  $50 Million CTF from Hackerone - Writeup

  58511064

• M4DM0e/DirDar

  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

  Language:Go4456897

• mgeeky/tomcatWarDeployer

  Apache Tomcat auto WAR deployment & pwning penetration testing tool.

  Language:Python4151613128

• root4loot/rescope

  Bugbounty scope tool

  Language:Go3199158

• j3ers3/PassList

  👍 Awesome password to hack

  Language:HTML295211139

• GainSec/GoldenNuggets-1

  Burp Extension for easily creating Wordlists

  Language:Python2108139

• mgeeky/expdevBadChars

  Bad Characters highlighter for exploit development purposes supporting multiple input formats while comparing.

  Language:Python20310349

• ambionics/symfony-exploits

  Exploits targeting Symfony

  Language:Python1956245

• kazet/wpgarlic

  A proof-of-concept WordPress plugin fuzzer

  Language:Python18410718

• Dheerajmadhukar/Lilly

  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, all the possible IPs, PORTs and SSL/TLS Certs are searched to validate the target in-scope.

  Language:Shell1759535

• devanshbatham/ArchiveFuzz

  Hunt down the secrets from the WebArchives for Fun and Profit

  Language:Python16812341

• ethicalhackingplayground/linkJS

  Language:Go561116

• The404Hacking/b374k-mini

  PHP Webshell with handy features.

  Language:PHP384126

• nyxxxie/awesome-default-passwords

  An organized collection of default passwords for various devices and services.

  Language:Python34206

• mgeeky/LISET

  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident response (either forensic or malware oriented).

  Language:Batchfile27508

• SpiderLabs/masher

  multiple password 'asher using Python’s hashlib

  Language:Python14705

• Mad-robot/web-cve-tests

  A simple framework for sending test payloads for known web CVEs.

  Language:Python3102

• HanseSecure/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python2100

• Mad-robot/keyhacks

  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

  110