The1976's Stars
harsh-bothra/learn365
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
Rajchowdhury420/OSCP-CheatSheet
My OSCP Prep Sandbox!!
m3n0sd0n4ld/GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
nowak0x01/WPXStrike
WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals vulnerabilities in WordPress
aldaor/HackerOneReports
Here you can find mostly all disclosed h1 reports
reddelexc/hackerone-reports
Top disclosed reports from HackerOne
sighook/pixload
Image Payload Creating/Injecting tools
m0chan/BugBounty
RepoToStoreBugBountyInfo
Proviesec/google-dorks
Useful Google Dorks for WebSecurity and Bug Bounty
Ishanoshada/GDorks
Google Dork List - Uncover the Hidden Gems of the Internet ( There are at least 320+ categories )
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
LucasPDiniz/403-Bypass
Bypass 403 pages
apernet/hysteria
Hysteria is a powerful, lightning fast and censorship resistant proxy.
merttasci/weapons4pentester
:hocho: this repo contains required files for web application pentests
ForceFledgling/proxyhub
An advanced [Finder | Checker | Server] tool for proxy servers, supporting both HTTP(S) and SOCKS protocols. 🎭
Ignitetechnologies/BurpSuite-For-Pentester
This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 solely and completely with "BurpSuite".
victoni/Bug-Bounty-Scripts
The scripts I write to help me on my bug bounty hunting
reewardius/bbFuzzing.txt
assetnote/kiterunner
Contextual Content Discovery Tool
hahwul/WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
morpheuslord/GPT_Vuln-analyzer
Uses ChatGPT API, Bard API, and Llama2, Python-Nmap, DNS Recon, PCAP and JWT recon modules and uses the GPT3 model to create vulnerability reports based on Nmap scan data, and DNS scan information. It can also perform subdomain enumeration to a great extent
Narasimha1997/fake-sms
A simple command line tool using which you can skip phone number based SMS verification by using a temporary phone number that acts like a proxy.
b1tg/CVE-2023-38831-winrar-exploit
CVE-2023-38831 winrar exploit generator
avinash201199/Free-courses-with-Certificates
Collection of free courses with certificates
Zarcolio/sitedorks
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
geekan/MetaGPT
🌟 The Multi-Agent Framework: First AI Software Company, Towards Natural Language Programming
sa7mon/S3Scanner
Scan for misconfigured S3 buckets across S3-compatible APIs!
0xPugal/One-Liners
A collection of one-liners for bug bounty hunting.
s41r4j/phomber
[PH0MBER]: An open source infomation grathering & reconnaissance framework!
The-Art-of-Hacking/h4cker
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.