Pinned Repositories
-tamper-
基于sqlmap,根据别人的模板自己改进了一些,也有收集了常用的脚本
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
2cmd
Got a command that doesn't support input files like whois or sqlmap? Use 2cmd to take input from stdin and run each line with the command(s) given in the script file. Comes with lot's of pentest/red teaming/bug bounty/CTF scripts ready to use
Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
ApacheTomcatScanner
A python script to scan for Apache Tomcat server vulnerabilities.
missing-cve-nuclei-templates
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
Security-Hub
Security Books, Mind-Maps, Vulnerabilities Notes, methodologies, fuzzing lists, writeups, disclosed reports and Bug-Bounty-Tips
Pcoder7's Repositories
Pcoder7/awesome-cve-poc
✍️ A curated list of CVE PoCs.
Pcoder7/Awesome-WAF
🔥 Web-application firewalls (WAFs) from security standpoint.
Pcoder7/Blind-SSRF
Nuclei Templates to reproduce Cracking the lens's Research
Pcoder7/Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Pcoder7/Code-Review-Notes
Hacking notes provided by member tomorrowisnew_ [Sonic]
Pcoder7/CT_subdomains
An hourly updated list of subdomains gathered from certificate transparency logs
Pcoder7/go-reflect
A crawler that tests HTML forms for reflection
Pcoder7/google-dorks
Pcoder7/gzipsplit
split lines of text into multiple gzip files
Pcoder7/Hackvertor-tags
Hackvertor tags i've created
Pcoder7/hakcron
Easily schedule commands to run multiple times at set intervals (like a cronjob, but with one command)
Pcoder7/hakfindinternaldomains
Feed it a list of subdomains, it will resolve them and tell you which ones are internal
Pcoder7/haklistgen
Turns any junk text into a usable wordlist for brute-forcing.
Pcoder7/hakrevdns
Small, fast tool for performing reverse DNS lookups en masse.
Pcoder7/hakrevshell
Pcoder7/https-github.com-aldaor-HackerOneReports
Pcoder7/JIRA_testing
Pcoder7/log4j
Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
Pcoder7/log4j-bypass-words
Pcoder7/Markdown-XSS-Payloads
XSS payloads for exploiting Markdown syntax
Pcoder7/Mind-Maps
Mind-Maps of Several Things
Pcoder7/MostCommonWebPorts
Most popular HTTP/S ports extracted from Shodan through scraping
Pcoder7/payloads
Git All the Payloads! A collection of web attack payloads.
Pcoder7/pegaxss
Magic Header Blind Xss tool (deliver blind xss payloads in request headers).
Pcoder7/portswigger-labs
A collection of solutions for every PortSwigger Academy Lab (in progress)
Pcoder7/snetra
A Python based scanner uses shodan-internetdb to scan the IP.
Pcoder7/Virtual-Host
Modified Nuclei Templates Version to FUZZ Host Header
Pcoder7/Web-Sec-CheatSheet
Pcoder7/xmp-xxe
Pcoder7/XSSearch
XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for automating XSS attacks and validating XSS endpoint