blackmanjack's Stars
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
projectdiscovery/mapcidr
Utility program to perform multiple operations for a given subnet/CIDR ranges.
securekomodo/citrixInspector
Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519
assetnote/exploits
Repository to store exploits created by Assetnotes Security Research team
telekom-security/cve-2023-3519-citrix-scanner
Citrix Scanner for CVE-2023-3519
gitleaks/gitleaks
Protect and discover secrets using Gitleaks 🔑
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
tillson/git-hound
Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.
techgaun/github-dorks
Find leaked secrets via github search
obheda12/GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
frohoff/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Mr-xn/CVE-2023-23333
SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates
horizon3ai/CVE-2023-34362
MOVEit CVE-2023-34362
0xKayala/NucleiFuzzer
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
kitloong/laravel-migrations-generator
Laravel Migrations Generator: Automatically generate your migrations from an existing database schema.
Xethron/migrations-generator
Laravel Migrations Generator: Automatically generate your migrations from an existing database schema.
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
DanMcInerney/xsscrapy
XSS spider - 66/66 wavsep XSS detected
Hackmanit/Web-Cache-Vulnerability-Scanner
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
bobbyrsec/Microsoft-Teams-GIFShell
m0rtem/CloudFail
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
EnableSecurity/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
vincentcox/bypass-firewalls-by-DNS-history
Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.
graphql-kit/graphql-voyager
🛰️ Represent any GraphQL API as an interactive graph
dolevf/Damn-Vulnerable-GraphQL-Application
Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files
assetnote/blind-ssrf-chains
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
eelyvy/log4jshell-pdf
The purpose of this project is to demonstrate the Log4Shell exploit with Log4J vulnerabilities using PDF as delivery channel
jobertabma/ground-control
A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.