Pinned Repositories
40X_Bypass
This tool attempts to bypass 401/403 responses by manipulating the URL path as well as trying different HTTP headers and verbs.
5G_ciphered_NAS_decipher_tool
A python tool to decipher/decrypt 5G ciphered NAS message and export plain 5G NAS into wireshark pcap file
aem-hacker
aem-links
Adobe Experience Manager links, cheat sheets and solutions to common problems.
api_extractor
A tool to extract and call API endpoints from JavaScript.
apkleaks
Scanning APK file for URIs, endpoints & secrets.
BurpSecretFinder
wayback.py
Wayback URL collection
danzajork's Repositories
danzajork/asnmap
Go CLI and Library for quickly mapping organization network ranges using ASN information.
danzajork/bbscope
Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
danzajork/Burp-Montoya-Utilities
A collection of utilities for building extensions using Burp's Montoya API
danzajork/burpsuite-bambda-filters
danzajork/CSPReconGO
danzajork/defcon-tattoo
danzajork/dmarc-subdomains
Tool to parse subdomains from dmarc.live
danzajork/dnsx
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.
danzajork/ffufai
AI-powered ffuf wrapper
danzajork/GAP-Burp-Extension
Burp Extensions
danzajork/GBA_ME
UE GBA_ME Emulator
danzajork/http-garden
Differential testing and fuzzing of HTTP servers and proxies
danzajork/ipranges
🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft (Azure), Oracle (Cloud), GitHub, Facebook (Meta), OpenAI (GPTBot) and other with daily updates.
danzajork/jsluice
Extract URLs, paths, secrets, and other interesting bits from JavaScript
danzajork/jsmon
a javascript change monitoring tool for bugbounties
danzajork/LookMark
A browser bookmark to show hidden fields and enable disabled fields on a web page
danzajork/noir
Attack surface detector that identifies endpoints by static analysis
danzajork/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
danzajork/pwndoc
Pentest Report Generator
danzajork/qlik-product-success.github.io
danzajork/quickcert
A better way of querying certificate transparency logs
danzajork/recollapse
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
danzajork/SploitScan
SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated proof-of-concept (PoC) exploits.
danzajork/tinydns
Tiny embeddable dns server
danzajork/tlsx
Fast and configurable TLS grabber focused on TLS based data collection.
danzajork/tmovvm
An unofficial Android client for the T-Mobile mstore VVM API
danzajork/uncover
Quickly discover exposed hosts on the internet using multiple search engines.
danzajork/vulnerability-rating-taxonomy
Bugcrowd’s baseline priority ratings for common security vulnerabilities
danzajork/waymore
Find way more from the Wayback Machine!
danzajork/XnlReveal
A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements.