Bo0oM's Stars
juliocesarfort/public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
fuzzdb-project/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
GhostTroops/scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
streaak/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
pry0cc/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
BeichenDream/Godzilla
哥斯拉
ivre/ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.
tangyoha/telegram_media_downloader
基于Dineshkarthik的项目, 电报视频下载,电报资源下载,跨平台,支持web查看下载进度 ,支持bot下发指令下载,支持下载已经加入的私有群但是限制下载的资源, telegram media download,Download media files from a telegram conversation/chat/channel up to 2GiB per file
abrahamjuliot/creepjs
Creepy device and browser fingerprinting
DanMcInerney/xsscrapy
XSS spider - 66/66 wavsep XSS detected
evilsocket/legba
A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷
Mazars-Tech/AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
mazen160/secrets-patterns-db
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
chaitin/xpoc
为供应链漏洞扫描设计的快速应急响应工具 [快速应急] [漏洞扫描] [端口扫描] [xray2.0进行时] A fast emergency response tool designed for supply chain vulnerability scanning.
0xPugal/fuzz4bounty
1337 Wordlists for Bug Bounty Hunting
nikitasius/Telegraher
Telegram fork with blackjack and hookers
wallarm/api-firewall
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
Itz-fork/Mega.nz-Bot
Simple Telegram Bot to Download and Upload Files From Mega.nz
gh0x0st/pythonizing_nmap
A detailed guide showing you different ways you can incorporate Python into your workflows around Nmap.
DamianMorozov/TgDownloader
Telegram Files Downloader
synacktiv/bbs
bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based on the request's target. Routing can be configured with a PAC script (if built with PAC support), or through a JSON file.
k1rurk/check_bitrix
Check bitrix vulnerabilities
cr1f/writeups
some thoughts
dragon-dreamer/binary-valentine
Executable files static analyzer
cipher387/bazzellpy
A library for Pythonistas to call Michael Bazzell's OSINT tools as functions
cxxrev0to1dev/ios10_net_flow
iPhone AppStore Tweak,Ios9 and ios10 SSLWrite, SSLRead, MGCopyAnswer hook, Theos tweaks development.
WRFan/jailbreak10.3.3
This repo provides some info on how to downgrade, jailbreak, and setup IOS 10.3.3 on an iPhone 5s.
kaimi-/java-paths
Possible paths for Java-specific path traversal, etc.
arale61/reverse_shells_tools
Yet another scripts for generating reverse shells based mostly on PayloadAllTheThings