DghostNinja's Stars
projectdiscovery/interactsh
An OOB interaction gathering server and client library
reddelexc/hackerone-reports
Top disclosed reports from HackerOne
gmelodie/awesome-wordlists
A curated list wordlists for bruteforcing and fuzzing
OWASP/crAPI
completely ridiculous API (crAPI)
iamunixtz/LazyXss
Automation tool to testing and confirm the xss vulnerability.
ShadowByte1/XSS
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
bobby-lin/study-bug-bounty
Beginner Guide to Bug Hunting
hahwul/dalfox
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Mr-dark55/XSSGen
L4ser-Security-Labs/whoget
OSINT Tool for Nigerian Phone Numbers
ifconfig-me/SQL_Injection-Techniques
Advanced SQL Injection Techniques for Bug Bounty Hunters
sushiwushi/bug-bounty-dorks
List of Google Dorks for sites that have responsible disclosure program / bug bounty program
ifconfig-me/Directory-Traversal-Payloads
List of Directory Traversal/LFI Payloads Scraped from the Internet
himanshub16/ProxyMan
Configuring proxy settings made easy.
A3h1nt/Grawler
Grawler is a tool written in PHP which comes with a web interface that automates the task of using google dorks, scrapes the results, and stores them in a file.
BrAmaral/Purple-Team-Resources
A curated list of tools and resources that I use daily as a Purple-Team operator.
xnl-h4ck3r/knoxnl
This is a python wrapper around the amazing KNOXSS API by Brute Logic
caido/workflows
🛠️ Workflows created by the community
edoardottt/cariddi
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
anshumanpattnaik/http-request-smuggling
HTTP Request Smuggling Detection Tool
YaS5in3/Bug-Bounty-Wordlists
KathanP19/HowToHunt
Collection of methodology and test case for various web vulnerabilities.
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
EnableSecurity/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
ViktorMares/ultimate_discovery
Ultimate Wordlist for Web Content Discovery
hegdepavankumar/VMware-Workstation-Pro-17-Licence-Keys
Free VMware Workstation Pro 17 full license keys. We've meticulously organized thousands of keys, catering to all major versions of VMware Workstation Pro 17 Choose from our curated selection to enhance your virtualization experience.
DghostNinja/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
DghostNinja/vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter