Roman160

Roman160's Stars

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP59.2k1.9k27224k

• projectdiscovery/nuclei

  Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

  Language:Go21k2382.5k2.5k

• muesli/duf

  Disk Usage/Free Utility - a better 'df' alternative

  Language:Go13k87129404

• ffuf/ffuf

  Fast web fuzzer written in Go

  Language:Go12.9k1595211.3k

• owasp-amass/amass

  In-depth attack surface mapping and asset discovery

  Language:Go12.2k2176541.9k

• shmilylty/OneForAll

  OneForAll是一款功能强大的子域收集工具

  Language:Python8.5k1013251.3k

• yogeshojha/rengine

  reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

  Language:HTML7.6k1418701.1k

• payloadbox/xss-payload-list

  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

  6.5k139131.7k

• KathanP19/HowToHunt

  Collection of methodology and test case for various web vulnerabilities.

  6.2k279191.8k

• michenriksen/aquatone

  A Tool for Domain Flyovers

  Language:Go5.7k1360880

• lc/gau

  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

  Language:Go4k50104456

• internetwache/GitTools

  A repository with 3 tools for pwn'ing websites with .git repositories available

  Language:Shell3.9k8925627

• brainfucksec/kalitorify

  Transparent proxy through Tor for Kali Linux OS

  Language:Shell1.1k4656228

• appsecco/the-art-of-subdomain-enumeration

  This repository contains all the supplement material for the book "The art of sub-domain enumeration"

  Language:Python641257151

• robre/scripthunter

  Tool to find JavaScript files on Websites

  Language:Shell514171495

• PacktPublishing/Hands-On-Penetration-Testing-with-Python

  Hands-On Penetration Testing with Python, published by Packt

  Language:Python809246

• app-generator/flask-corona-dark

  Flask Dashboard - Corona Dark Design | AppSeed

  Language:CSS494019

• jhaddix/sslScrape

  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.

  Language:Python434016

• jhaddix/LinkFinder

  A python script that finds endpoints in JavaScript files

  Language:Python423018

• jhaddix/lazyrecon

  This script is intended to automate your reconnaissance process in an organized fashion

  Language:Shell383013

• jhaddix/LazyFuzzer

  Ease-of-use extension for Web Application penetration testing

  Language:JavaScript214011

• sparshkulshrestha/LazyRecon

  Subdomain discovery using Sublist3r, certspotter, crt.sh , censys and amass . Subdomain bruteforcing using Gobuster and Resolve hosts using tomnomnom's filter-resolved.

  Language:Python17437

• jhaddix/ScanCannon

  Combines the speed of masscan with the reliability and detailed enumeration of nmap

  Language:Shell15307

• chttrjeankr/visitor-management-system

  Visitor Check In/Check Out portal for visitors to any Organization

  Language:Python3201