Pinned Repositories
003Recon
Some tools to automate recon - 003random
alpha-stage-scripts
Repo contains a list of random scripts that I use while testing out random things.
amass
In-Depth Subdomain Enumeration
android-backup-extractor
Android backup extractor
Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
Androl4b
A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
angularjs-csti-scanner
Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.
Anubis
Subdomain enumeration and information gathering tool
DomainWatch
DomainWatch allows everyone to monitor domains for possible take-overs.
recon
information gathering
attacker34's Repositories
attacker34/awesome-csirt
A list of awesome CSIRT tools and presentations
attacker34/Awesome_pentest
attacker34/BurpSuite-1
BurpSuite using the document and some extensions
attacker34/domi-owned
IBM/Lotus Domino exploitation
attacker34/DVHMA
Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.
attacker34/filterbypass
attacker34/gitpillage
Pillage a git repo found in an accessible web root
attacker34/hackerone_public_reports
Finds all public bug reports on reported on Hackerone
attacker34/jsprime
a javascript static security analysis tool
attacker34/LFiFreak
A unique automated LFi Exploiter with Bind/Reverse Shells
attacker34/linux-exploitation-course
A Course on Intermediate Level Linux Exploitation
attacker34/mix-recon
Reconnaissance scripts for penetration testing
attacker34/MobileApp-Pentest-Cheatsheet
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
attacker34/Nodejs-SSRF-App
Nodejs application intentionally vulnerable to SSRF
attacker34/oscp
attacker34/osint_tools_security_auditing
osint_tools_security_auditing
attacker34/owasp-mstg
The Mobile Security Testing Guide (MSTG) is a manual for testing the security of mobile apps. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS). The MSTG is meant to provide a baseline set of test cases for black-box and white-box security tests, and to help ensure completeness and consistency of the tests.
attacker34/pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
attacker34/PoCs
Proof of Concepts for CVE-2016–3714
attacker34/pwngitmanager
Git manager for pentesters
attacker34/Resources-for-learning-Hacking
All the resources I could find for learning Ethical Hacking and penetration testing.
attacker34/scantastic-tool
It's bloody scantastic
attacker34/School-Management-System
Using PHP, MYSQL, CSS, JS, HTML
attacker34/SQL-Injection-Payloads
SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
attacker34/Useful_Websites_For_Pentester
This repository is to make life of the pentester easy as it is a collection of the websites that can be used by pentesters for day to day studies and to remain updated.
attacker34/WP-Fingerprint
Wordpress Plugin Fingerprinting
attacker34/Xss-
attacker34/xss-shell-payloads
XSSing Your Way to Shell