ferreiraklet's Stars
ameenmaali/urldedupe
Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
ferreiraklet/Jeeves
Jeeves SQLI Finder
jaeles-project/gospider
Gospider - Fast web spider written in Go
xnl-h4ck3r/xnLinkFinder
A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target
tomnomnom/waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
JoyGhoshs/0install
A bash script that will automatically install Bug Hunting tools used for recon
ferreiraklet/Frizz
Crlf Injection Finder
RodricBr/bau
Bash All URLs
ferreiraklet/nilo
Responser
plackyhacker/ps-encoder
A very simple python script to encode and decode PowerShell one-liners.
GainSec/TreeHouse-Wordlists
Wordlist for Hacking, Penetration Testing, Vulnerability Assessments and More
0xJin/awesome-bugbounty-builder
Awesome Bug bounty builder Project
thenurhabib/scancss
automatically crawl every URL and find cross site scripting (XSS)
ferreiraklet/airixss
Finding XSS during recon
RodricBr/CVE-2021-3156
CVE-2021-3156
blaCCkHatHacEEkr/PENTESTING-BIBLE
articles
americo/reconfy
Fast and customizable reconnaissance workflow tool based on simple YAML based DSL.
e11i0t4lders0n/Web-Application-Pentest-Checklist
c3l3si4n/pwnkit
PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.
s0md3v/uro
declutters url lists for crawling/pentesting
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
hahwul/dalfox
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
danielhnmoreno/pycat
Windows Reverse TCP backdoor
RodricBr/ytpy
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
iPower/KasperskyHook
Hook system calls on Windows by using Kaspersky's hypervisor
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
m0nad/awesome-privilege-escalation
A curated list of awesome privilege escalation