bbhunter

bbhunter's Stars

• BishopFox/unredacter

  Never ever ever use pixelation as a redaction technique

  Language:TypeScript7.9k7229739

• pry0cc/axiom

  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

  Language:Shell4.1k91429650

• HolyBugx/HolyTips

  A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

  1.8k764305

• sehno/Bug-bounty

  Ressources for bug bounty hunting

  1.8k672568

• Cgboal/SonarSearch

  A rapid API for the Project Sonar dataset

  Language:Go644194597

• epi052/recon-pipeline

  An automated target reconnaissance pipeline.

  Language:Python429116399

• 0x0FB0/pulsar

  Network footprint scanner platform. Discover domains and run your custom checks periodically.

  Language:JavaScript403223182

• ngalongc/openapi_security_scanner

  Language:Python1726139

• tasooshi/pentesting-cookbook

  A set of recipes useful in pentesting and red teaming scenarios

  Language:PowerShell14210435

• nccgroup/go-pillage-registries

  Pentester-focused Docker registry tool to enumerate and pull images

  Language:Go10510111

• PwnFunction/Next.js-Flat-Prototype-Pollution

  Prototype Pollution using `flat` with Next.js

  Language:JavaScript102119

• riddhi-shree/knowledge-sharing

  Hands-on content for Humla/Puliya sessions at null community

  Language:Shell865031

• mattiasgrenfeldt/bachelors-thesis-http-request-smuggling

  Language:Go69307

• SmoZy92/Shodomain

  Shodan subdomain finder

  Language:Python663417

• 0xsapra/fuzzparam

  Language:Go601110

• chopicalqui/TurboDataMiner

  The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and faster understanding of the data collected by Burp Suite.

  Language:Python542215

• gwen001/bxss

  Alternative to XSS Hunter for blind XSS.

  Language:PHP502010

• thelikes/gwdomains

  sub domain wild card filtering tool

  Language:Go414110

• tehryanx/sourcemapper

  Reconstruct javascript from a sourcemap in bash

  Language:Shell38209

• trufflesecurity/EmailGraffiti

  Vandalize old emails. Like an NFT that's easy to prove ownership of.

  Language:Python34312

• gwen001/csp-analyzer

  Analyze Content-Security-Policy header of a given URL.

  Language:Python28207

• Static-Flow/BurpSuiteAutoRepeaterNaming

  This extension replaces the default repeater tab name with the URL path of the repeater request.

  Language:Java22313

• h3xstream/waf-workshop

  Language:Python16206

• gwen001/graphql-introspection-analyzer

  Graphql introspection query analyzer.

  Language:Python14306

• gwen001/gitpillage

  Extract data from a .git directory.

  Language:Python12305

• si9int/iprobe

  Take a list of IP addresses and probe for working HTTP and HTTPS servers

  Language:Python12008

• digininja/cracked_flask

  A very simple lab for cracking Flask session cookies

  Language:Python9302

• gwen001/shotTheWorld

  PHP tool that takes screenshots of a given ips/ports combo list and then try to guess the service.

  Language:PHP93010

• yapaxi/Schemas

  1200

• YousefAmery/PostgreSQL-RCE-Extensions

  A User Defined function written in C for PostgreSQL Extensions, can be compiled as DLL for RCE on windows machines.

  Language:C1101