gh0sh's Stars
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
OmGigitOm/git-cheatsheet
OmGigitOm/python-basic
reconness/reconness
ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.
allyomalley/dnsobserver
A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for out-of-band DNS interactions and sends lookup notifications via Slack.
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
asciimoo/wuzz
Interactive cli tool for HTTP inspection
fransr/postMessage-tracker
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
fransr/bountyplz
Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
eldraco/domain_analyzer
Analyze the security of any domain by finding all the information possible. Made in python.
eur0pa/dirsearch-go
A Go implementation of dirsearch.
BugBountyResources/Resources
A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
ffuf/ffuf
Fast web fuzzer written in Go
orangetw/awesome-jenkins-rce-2019
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
Broly157/auto.sh
This script is (Mainly) for Beginner's
ClaudiuGeorgiu/PlaystoreDownloader
A command line tool to download Android applications directly from the Google Play Store by specifying their package name (an initial one-time configuration is required)
PDKT-Team/ctf
CTF write-ups by PDKT team with English and Indonesian language
tharina/BlackHoodie-2018-Workshop
Slides and challenges for my binary exploitation workshop at BlackHoodie 2018.
HarmJ0y/CheatSheets
Cheat sheets for various projects.
Aniket965/Hello-world
Add any Program in any language you like or add a hello world Program ❣️ if you like give us :star:
Moham3dRiahi/XAttackProV30
XAttacker Tool PRO V30 Website Vulnerability Scanner & Auto Exploiter
DovAmir/awesome-design-patterns
A curated list of software and architecture related design patterns.
NgeSEC/SecStory
SecStory (Security Story) adalah buku digital yang berisi kumpulan donasi cerita, ditulis oleh para pemangku kepentingan keamanan siber di Indonesia.
k4m4/movies-for-hackers
🎬 A curated list of movies every hacker & cyberpunk must watch.
ctfs/resources
A general collection of information, tools, and tips regarding CTFs and similar security competitions
OWASP/Top10
Official OWASP Top 10 Document Repository
WebGoat/WebGoat
WebGoat is a deliberately insecure application
shellphish/how2heap
A repository for learning various heap exploitation techniques.
OWASP/owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
freeCodeCamp/freeCodeCamp
freeCodeCamp.org's open-source codebase and curriculum. Learn to code for free.