h4ckerJi's Stars
KingOfBugbounty/Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
hakluke/haktrails
Golang client for querying SecurityTrails API data
saeidshirazi/awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
0xPugal/Awesome-Dorks
Dorks for Bug Bounty Hunting
pmiaowu/BurpSuite
这是一个全世界最强的抓包工具之一
EddieHubCommunity/BioDrop
Connect to your audience with a single link. Showcase the content you create and your projects in one place. Make it easier for people to find, follow and subscribe.
techgaun/github-dorks
Find leaked secrets via github search
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
zeroc00I/AllVideoPocsFromHackerOne
This script grab public report from hacker one and make some folders with poc videos
NoThrowForwardIt/SQLi-Dork-Repository
Dorks Hacking Database for educational proposal
rootac355/SQL-injection-dorks-list
Nice list of google dorks for SQL injection
YaS5in3/Bug-Bounty-Wordlists
faiqu3/ssrf
six2dez/OneListForAll
Rockyou for web fuzzing
iustin24/chameleon
yassineaboukir/CVE-2018-0296
Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
hackerspider1/dotfiles
Mac customization files.
eslam3kl/SQLiDetector
Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for different databases.
commixproject/commix
Automated All-in-One OS Command Injection Exploitation Tool.
ElevenPaths/FOCA
Tool to find metadata and hidden information in the documents.
gwen001/s3-buckets-finder
Find AWS S3 buckets and test their permissions.
Imran407704/Learn365
The purpose of #Learn365 collection is to create informational content in multiple codecs and share with the community to allow knowledge advent and studying.
grumpzsux/eJPT-Notes
Collection of notes to prepare for the eLearnSecurity eJPT certification exam.
NafisiAslH/KnowledgeSharing
p0dalirius/Awesome-RCE-techniques
Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
streaak/SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
arainho/awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
maurosoria/dirsearch
Web path scanner
zapstiko/wordlists
All Type of Payloads