blakejarvis's Stars
honoki/bugbounty-openvpn-socks
Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.
Tib3rius/AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
laconicwolf/Nmap-Scan-to-CSV
Converts Nmap XML output to csv file, and other useful functions
christophetd/CloudFlair
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
nicksherron/logstash-filter-greynoise
Logstash filter plugin for the Greynoise.io api
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
SigmaHQ/sigma
Main Sigma Rule Repository
atc-project/atomic-threat-coverage
Actionable analytics designed to combat threats
paralax/awesome-honeypots
an awesome list of honeypot resources
redcanaryco/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Kirtar22/Litmus_Test
Detecting ATT&CK techniques & tactics for Linux
PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
haccer/subjack
Subdomain Takeover tool written in Go
owasp-amass/amass
In-depth attack surface mapping and asset discovery
jedisct1/iptoasn-webservice
Web service to map IP addresses to AS information, using iptoasn.com
Ice3man543/SubOver
A Powerful Subdomain Takeover Tool
BastilleResearch/mousejack
MouseJack device discovery and research tools
laramies/theHarvester
E-mails, subdomains and names Harvester - OSINT
screetsec/Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
praetorian-inc/purple-team-attack-automation
Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
practical-tutorials/project-based-learning
Curated list of project-based tutorials
swisskyrepo/SSRFmap
Automatic SSRF fuzzer and exploitation tool
DataSploit/datasploit
An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.
cybercdh/phishfinder
A tool designed to traverse phishing URL paths to search for phishing kit source code.
cyberark/ACLight
A script for advanced discovery of Privileged Accounts - includes Shadow Admins
vz-risk/VCDB
VERIS Community Database
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
securityclippy/elasticintel
Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.