cnmiller's Stars
chatwoot/chatwoot
Open-source live-chat, email support, omni-channel desk. An alternative to Intercom, Zendesk, Salesforce Service Cloud etc. 🔥💬
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
kgretzky/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
dylanaraps/pure-sh-bible
📖 A collection of pure POSIX sh alternatives to external processes.
papercups-io/papercups
Open-source live customer chat
chrisleekr/binance-trading-bot
Automated Binance trading bot - Trade multiple cryptocurrencies. Buy low/sell high with Grid Trading. Integrated with TradingView technical analysis
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
tomnomnom/waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
optiv/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
assetnote/kiterunner
Contextual Content Discovery Tool
obheda12/GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
irsdl/IIS-ShortName-Scanner
latest version of scanners for IIS short filename (8.3) disclosure vulnerability
projectdiscovery/shuffledns
MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.
ayoubfathi/leaky-paths
A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
AlephNullSK/dnsgen
Generates combination of domain names from the provided input.
tomnomnom/qsreplace
Accept URLs on stdin, replace all query string values with a user-supplied value
ajpc500/BOFs
Collection of Beacon Object Files
itm4n/Perfusion
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
codingo/DNSCewl
A DNS Bruteforcing Wordlist Generator
Leoid/MatchandReplace
Match and Replace script used to automatically generate JSON option file to BurpSuite
subfinder/goaltdns
A permutation generation tool written in golang
ngduc/life-calendar
Life Calendar: Your Life in Weeks
pry0cc/relevant-wordlist
A wordlist that is kept up to date with the latest headlines to provide relevant words to human society
postrequest/xeca
PowerShell payload generator
moloch--/burp-multiplayer
Burp with Friends
BBerastegui/fresh-dns-servers
Fresh DNS servers
keithrozario/potassium40
Potassium40, the radioactive lambda scanner
mandatoryprogrammer/chrome-extension-manifests-dataset
>100K Chrome Extension manifest.json files for analysis