Pinned Repositories
amass-prime
crlfuzz
A fast tool to scan CRLF vulnerability written in Go
dalfox
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
meg-with-fff-output
Fetch many paths for many hosts - without killing the hosts
missing-cve-nuclei-templates
Daily updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
OneListForAll
Rockyou for web fuzzing
WAF-bypass-xss-payloads
XSS payloads for bypassing WAF. This repository is updating continuously.
wordlists-2
Real-world infosec wordlists, updated regularly
gprime31's Repositories
gprime31/dalfox
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
gprime31/apkleaks
Scanning APK file for URIs, endpoints & secrets.
gprime31/burp-extensions
Burp Extensions
gprime31/CeWL
CeWL is a Custom Word List Generator
gprime31/kxss
This a adaption of tomnomnom's kxss tool with a different output format
gprime31/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
gprime31/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
gprime31/rush
A cross-platform command-line tool for executing jobs in parallel
gprime31/SDRPlusPlus
Cross-Platform SDR Software
gprime31/tlsx
Fast and configurable TLS grabber focused on TLS based data collection.
gprime31/azerothcore-wotlk
Complete Open Source and Modular solution for MMO
gprime31/BLACKSQLi
gprime31/Bug-Bounty-Wordlists
gprime31/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
gprime31/cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
gprime31/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
gprime31/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
gprime31/Gxss
A tool to check a bunch of URLs that contain reflecting params.
gprime31/loxs
best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect
gprime31/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
gprime31/mitmproxy2swagger
Automagically reverse-engineer REST APIs via capturing traffic
gprime31/obs-backgroundremoval
An OBS plugin for removing background in portrait images (video), making it easy to replace the background when recording or streaming.
gprime31/page-fetch
Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pages and see the returned values
gprime31/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
gprime31/ScanCannon
Combines the speed of masscan with the reliability and detailed enumeration of nmap
gprime31/sj
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
gprime31/SSD_BENCHMARK_LINUX
SSD_BENCHMARK_LINUX
gprime31/SSRFmap
Automatic SSRF fuzzer and exploitation tool
gprime31/urlfinder
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
gprime31/xapk-to-apk
A simple standalone python script that converts .xapk file into a normal universal .apk file