BBerastegui
I like to mess with inputs. ¿?=)(/&%$·"!ªª!"·$%&/()=?¿ÇPOTATO
Bilbao - Barcelona - Tokyo - London - ${NEWPLACE}
Pinned Repositories
alerds
aquatone
A Tool for Domain Flyovers
aws-s3-bruteforce
Amazon AWS S3 Bucket Name Bruteforce
binaryalert
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
bucket-decloaker
A simple tool to decloak/expose the bucket name behind a domain.
byp4xx
Pyhton script for HTTP 40X responses bypassing. Features: Verb tampering, headers, #bugbountytips tricks and 2454 User-Agents.
cnamer
Just a fast enumerator of CNAMES for a list of domains.
dashlord
Dashlord version for Spain
dirgo
HTTP directory bruteforcer in golang (Original idea -> dirb <3)
fresh-dns-servers
Fresh DNS servers
BBerastegui's Repositories
BBerastegui/fresh-dns-servers
Fresh DNS servers
BBerastegui/bucket-decloaker
A simple tool to decloak/expose the bucket name behind a domain.
BBerastegui/aquatone
A Tool for Domain Flyovers
BBerastegui/aws-s3-bruteforce
Amazon AWS S3 Bucket Name Bruteforce
BBerastegui/byp4xx
Pyhton script for HTTP 40X responses bypassing. Features: Verb tampering, headers, #bugbountytips tricks and 2454 User-Agents.
BBerastegui/cnamer
Just a fast enumerator of CNAMES for a list of domains.
BBerastegui/dashlord
Dashlord version for Spain
BBerastegui/binaryalert
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
BBerastegui/dockers
BBerastegui/goca
Goca Scanner
BBerastegui/jsmon
a javascript change monitoring tool for bugbounties
BBerastegui/red.cow.cat
red.cow.cat files repository.
BBerastegui/second-order
Second-order subdomain takeover scanner
BBerastegui/wappalyzer-fingerprints
A snapshot of the latest Wappalyzer fingerprints before the project went private.
BBerastegui/wappalyzergo
A high performance go implementation of Wappalyzer Technology Detection Library
BBerastegui/WebGoat
WebGoat is a deliberately insecure application
BBerastegui/Arjun
HTTP parameter discovery suite.
BBerastegui/BBerastegui
Config files for my GitHub profile.
BBerastegui/bounty-targets-data
This repo contains hourly-updated data dumps of Hackerone/Bugcrowd scopes that are eligible for reports
BBerastegui/domains-from-csp
A script to extract domain names from Content Security Policy(CSP) headers
BBerastegui/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
BBerastegui/foo
A lot of messy code :S
BBerastegui/gadjit
BBerastegui/GCPBucketBrute
A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
BBerastegui/gobuster
Directory/file & DNS busting tool written in Go
BBerastegui/Hamburglar
Hamburglar -- collect useful information from urls, directories, and files
BBerastegui/LinkFinder
A python script that finds endpoints in JavaScript files
BBerastegui/pabhig
Pentesters and bounty hunters inspirational guide (PABHIG)
BBerastegui/Photon
Incredibly fast crawler designed for OSINT.
BBerastegui/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose