Pinned Repositories
3klCon
Automation Recon tool which works with Large & Medium scopes
4xxbypass
4xxbypass
Amass
In-depth Attack Surface Mapping and Asset Discovery
ansible
Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to cloud management, in a language that approaches plain English, using SSH, with no agents to install on remote systems. https://docs.ansible.com.
AutoRecon
Simple shell script for automated domain recognition with some tools
axiom
The dynamic infrastructure framework for anybody!
Bug-Bounty-Scripts
Script for Bug Bounty
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
dalfox
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Shri1610's Repositories
Shri1610/EnterprisePurpleTeaming
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
Shri1610/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Shri1610/AdvancedKeyHacks
API Key/Token Exploitation Made easy.
Shri1610/Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
Shri1610/Blind-SSRF
Nuclei Templates to reproduce Cracking the lens's Research
Shri1610/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Shri1610/BountyTricks
Shri1610/bruteforce-lists
Some files for bruteforcing certain things.
Shri1610/cvemon
Monitoring exploits & references for CVEs
Shri1610/dismap
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
Shri1610/Dorks-collections-list
List of Github repositories and articles with list of dorks for different search engines
Shri1610/Fast-Google-Dorks-Scan
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.
Shri1610/Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Shri1610/gotator
Gotator is a tool to generate DNS wordlists through permutations.
Shri1610/jadx
Dex to Java decompiler
Shri1610/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Shri1610/Mind-Maps
Mind-Maps of Several Things
Shri1610/mobile-nuclei-templates
Shri1610/nuclei-templates
Few templates which I developed for nuclei
Shri1610/nuclei-templates-1
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Shri1610/OneForAll
OneForAll是一款功能强大的子域收集工具
Shri1610/OSCP-10
OSCP Guide
Shri1610/OSCP_xkyrage
simple template to use
Shri1610/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Shri1610/PENTESTING-BIBLE
Shri1610/privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Shri1610/sunlogin_rce
向日葵 RCE
Shri1610/ThreatHunting_with_Osquery
Threat Hunting & Incident Investigation with Osquery
Shri1610/waymore
Find way more from the Wayback Machine!
Shri1610/xnLinkFinder
A python tool used to discover endpoints for a given target