h4r5h1t
Security & Automation Engineer | Application Security | Cloud Security | Penetration Tester
India
Pinned Repositories
massdns
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
CertCheck
SSL/TLS Certificate Checker - A Python script to validate SSL/TLS certificates for common misconfigurations and output the results in JSON format.
certiflex
Certiflex is a fast, powerful, and user-friendly SSL/TLS certificate checker written in Python.
Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
h4r5h1t
About Me
katana
A next-generation crawling and spidering framework.
RandomProjects
webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
HowToHunt
Collection of methodology and test case for various web vulnerabilities.
katana
A next-generation crawling and spidering framework.
h4r5h1t's Repositories
h4r5h1t/webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
h4r5h1t/CertCheck
SSL/TLS Certificate Checker - A Python script to validate SSL/TLS certificates for common misconfigurations and output the results in JSON format.
h4r5h1t/h4r5h1t
About Me
h4r5h1t/RandomProjects
h4r5h1t/certiflex
Certiflex is a fast, powerful, and user-friendly SSL/TLS certificate checker written in Python.
h4r5h1t/Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
h4r5h1t/katana
A next-generation crawling and spidering framework.
h4r5h1t/massdns
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
h4r5h1t/Wordpresscan
WPScan rewritten in Python + some WPSeku ideas
h4r5h1t/awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
h4r5h1t/Bheem
h4r5h1t/binaryalert
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
h4r5h1t/dutchgov
Dutch Government Web Sites
h4r5h1t/HowToHunt
Tutorials and Things to Do while Hunting Vulnerability.
h4r5h1t/it-cert-automation-practice
Google IT Automation with Python Professional Certificate - Practice files
h4r5h1t/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
h4r5h1t/ScoutSuite
Multi-Cloud Security Auditing Tool
h4r5h1t/shuffledns
MassDNS wrapper written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
h4r5h1t/twoc-problems
h4r5h1t/uro
declutters url lists for crawling/pentesting
h4r5h1t/webtech
Identify technologies used on websites.
h4r5h1t/yextend
Yara integrated software to handle archive file data.