DghostNinja

DghostNinja's Stars

• projectdiscovery/interactsh

  An OOB interaction gathering server and client library

  Language:Go3.3k356

• reddelexc/hackerone-reports

  Top disclosed reports from HackerOne

  Language:Python3.8k706

• gmelodie/awesome-wordlists

  A curated list wordlists for bruteforcing and fuzzing

  742129

• OWASP/crAPI

  completely ridiculous API (crAPI)

  Language:Java1.1k338

• iamunixtz/LazyXss

  Automation tool to testing and confirm the xss vulnerability.

  Language:Python11026

• ShadowByte1/XSS

  8919

• projectdiscovery/httpx

  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

  Language:Go7.5k823

• bobby-lin/study-bug-bounty

  Beginner Guide to Bug Hunting

  68081

• hahwul/dalfox

  🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

  Language:Go3.7k411

• Mr-dark55/XSSGen

  Language:Python156

• L4ser-Security-Labs/whoget

  OSINT Tool for Nigerian Phone Numbers

  Language:Python178

• ifconfig-me/SQL_Injection-Techniques

  Advanced SQL Injection Techniques for Bug Bounty Hunters

  10366

• sushiwushi/bug-bounty-dorks

  List of Google Dorks for sites that have responsible disclosure program / bug bounty program

  1.2k379

• ifconfig-me/Directory-Traversal-Payloads

  List of Directory Traversal/LFI Payloads Scraped from the Internet

  7414

• himanshub16/ProxyMan

  Configuring proxy settings made easy.

  Language:Shell687107

• A3h1nt/Grawler

  Grawler is a tool written in PHP which comes with a web interface that automates the task of using google dorks, scrapes the results, and stores them in a file.

  Language:PHP21254

• BrAmaral/Purple-Team-Resources

  A curated list of tools and resources that I use daily as a Purple-Team operator.

  Language:Shell321

• xnl-h4ck3r/knoxnl

  This is a python wrapper around the amazing KNOXSS API by Brute Logic

  Language:Python20832

• caido/workflows

  🛠️ Workflows created by the community

  Language:JavaScript5615

• edoardottt/cariddi

  Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

  Language:Go1.5k154

• anshumanpattnaik/http-request-smuggling

  HTTP Request Smuggling Detection Tool

  Language:Python46799

• YaS5in3/Bug-Bounty-Wordlists

  600119

• KathanP19/HowToHunt

  Collection of methodology and test case for various web vulnerabilities.

  6.1k1.7k

• daffainfo/AllAboutBugBounty

  All about bug bounty (bypasses, payloads, and etc)

  5.8k1.1k

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell5.6k912

• EnableSecurity/wafw00f

  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

  Language:Python5.2k926

• ViktorMares/ultimate_discovery

  Ultimate Wordlist for Web Content Discovery

  6415

• hegdepavankumar/VMware-Workstation-Pro-17-Licence-Keys

  Free VMware Workstation Pro 17 full license keys. We've meticulously organized thousands of keys, catering to all major versions of VMware Workstation Pro 17 Choose from our curated selection to enhance your virtualization experience.

  49184

• DghostNinja/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  1

• DghostNinja/vulnerability-Checklist

  This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

  1