Pinned Repositories
Archive
Hacking Methodology, Cheatsheats, Conceptual-Breakdowns
Auto_Wordlists
DS_Store_crawler_parser
a parser + crawler for .DS_Store files exposed publically
h1domains
HackerOne "in scope" domains for all your fuzzing needs
mitmproxy2swagger
Automagically reverse-engineer REST APIs via capturing traffic
pastepwn
Python framework to scrape PasteBin pastes and analyze them
pentest-scripts
Compilation of scripts/tools (made by me or not) that help me with Pentest and Bug Bounty.
sherlock
🔎 Find usernames across social networks
thc-1001-tips-and-tricks
Various tips & tricks
unblob
Extract files from any kind of container formats
bbhunter's Repositories
bbhunter/Auto_Wordlists
bbhunter/easyg
Here I gather all the resources about PenTesting and Bug Bounty Hunting that I find interesting
bbhunter/AppSecEzine
AppSec eZine Public Repository.
bbhunter/bloodyAD
BloodyAD is an Active Directory Privilege Escalation Framework
bbhunter/bypass-url-parser
bypass-url-parser
bbhunter/cdn
Compiles a list of major CDN and WAF subnets.
bbhunter/clairvoyance
Obtain GraphQL API schema despite disabled introspection!
bbhunter/community
Kubernetes community content
bbhunter/crAPI
completely ridiculous API (crAPI)
bbhunter/ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
bbhunter/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
bbhunter/iframeBusterXSS
Check for know iframeBuster XSS
bbhunter/jsleak-1
jsleak is a tool to find secret , paths or links in the source code during the recon.
bbhunter/mariana-trench
Our security focused static analysis tool for Android and Java applications.
bbhunter/MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
bbhunter/PenTestMethodology2022
PenTest Methodology
bbhunter/personal-security-checklist
🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021
bbhunter/pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
bbhunter/pphack
The Most Advanced Client-Side Prototype Pollution Scanner
bbhunter/RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
bbhunter/reFlutter-1
Flutter Reverse Engineering Framework
bbhunter/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
bbhunter/Reverse-Engineering
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
bbhunter/single-file-cli
bbhunter/SingleFile
Save a complete web page into a single HTML file
bbhunter/templates
Repository to house markdown templates for researchers
bbhunter/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
bbhunter/wappalyzergo
A high performance go implementation of Wappalyzer Technology Detection Library
bbhunter/wordlists-8
Real-world infosec wordlists, updated regularly
bbhunter/Writeups-2
This repository contains writeups for various CTFs I've participated in (Including Hack The Box).