encodedguy

encodedguy's Stars

• MobSF/Mobile-Security-Framework-MobSF

  Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

  Language:JavaScript17.8k5781.5k3.3k

• 0xInfection/Awesome-WAF

  🔥 Web-application firewalls (WAFs) from security standpoint.

  Language:Python6.4k25961.1k

• ihebski/DefaultCreds-cheat-sheet

  One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

  Language:Python5.8k8916707

• projectdiscovery/naabu

  A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

  Language:Go4.9k71353565

• Mebus/cupp

  Common User Passwords Profiler (CUPP)

  Language:Python4.6k213651.2k

• pry0cc/axiom

  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

  Language:Shell4.1k90429652

• m9rco/Genymotion_ARM_Translation

  👾👾 Genymotion_ARM_Translation Please enjoy！

  Language:Shell2.3k5229411

• akto-api-security/akto

  Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

  Language:Java1.1k17157209

• indianajson/can-i-take-over-dns

  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.

  1k323094

• emadshanab/Nuclei-Templates-Collection

  Nuclei Templates Collection

  Language:Python932305246

• 0ang3el/aem-hacker

  Language:Python7813114167

• byt3hx/jsleak

  jsleak is a tool to find secret , paths or links in the source code during the recon.

  Language:Go4904945

• Emoe/kxss

  This a adaption of tomnomnom's kxss tool with a different output format

  Language:Go44081877

• jthack/PIPE

  Prompt Injection Primer for Engineers

  3828136

• cramppet/regulator

  Automated learning of regexes for DNS discovery

  Language:Python3626842

• Escape-Technologies/graphql-wordlist

  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

  Language:TypeScript3395236

• SirBugs/Priv8-Nuclei-Templates

  My Priv8 Nuclei Templates

  29410168

• assetnote/ghostbuster

  Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.

  Language:Python26691135

• Nwqda/CVE-2022-26134

  CVE-2022-26134 - Atlassian Confluence unauthenticated OGNL injection vulnerability (RCE).

  Language:Python23165

• ARPSyndicate/bug-bounty-domains

  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]

  2157050

• moniik/poc_salesforce_lightning

  Academic purposes only. Attack against Salesforce lightning with guest privilege.

  Language:Python1502034

• ARPSyndicate/kenzer-templates

  essential templates for kenzer [DEPRECATED]

  Language:Python11012136

• clarkvoss/Nuclei-Templates

  7410217

• R3dy/ciscobruter

  Brute-force Cisco SSL VPN

  Language:Ruby576223

• rashahacks/wordlists

  42006

• encodedguy/bugbounty-cheatsheet

  313110

• salty-ivy/SpreadVibe-publicMirror

  A dynamic forming services that can generate forms from spreadsheets

  Language:Python10100

• encodedguy/reconasha

  Automate your subdomain enumeration, subdomain takeover, management, nuclei, etc. in one go.

  Language:Shell8115

• Crusher95574/toolsearch

  List of Web security tools

  Language:HTML3201

• encodedguy/rabbitmq-whoami

  Python code to test default credentials for list of rabbitmq login dashboard

  Language:Python2100