hunter0x8

hunter0x8's Stars

• trimstray/the-book-of-secret-knowledge

  A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

  152k2.5k09.7k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP59.5k1.9k27324k

• Asabeneh/30-Days-Of-JavaScript

  30 days of JavaScript programming challenge is a step-by-step guide to learn JavaScript programming language in 30 days. This challenge may take more than 100 days, please just follow your own pace. These videos may help too: https://www.youtube.com/channel/UC7PNRuno1rzYPb1xLa4yktw

  Language:JavaScript43.6k84916210.1k

• Asabeneh/30-Days-Of-Python

  30 days of Python programming challenge is a step-by-step guide to learn the Python programming language in 30 days. This challenge may take more than100 days, follow your own pace. These videos may help too: https://www.youtube.com/channel/UC7PNRuno1rzYPb1xLa4yktw

  Language:Python43.5k8261388.3k

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.5k1951.6k2.7k

• TheKingOfDuck/fuzzDicts

  You Know, For WEB Fuzzing ! 日站用的字典。

  Language:Python7.6k157102.4k

• s0md3v/AwesomeXSS

  Awesome XSS stuff

  Language:JavaScript4.8k23913770

• devanshbatham/Awesome-Bugbounty-Writeups

  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

  Language:Python4.8k243171k

• hisxo/gitGraber

  gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

  Language:Python2k4225337

• IvanGlinkin/Fast-Google-Dorks-Scan

  The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

  Language:Shell1.5k369248

• devanshbatham/FavFreak

  Making Favicon.ico based Recon Great again !

  Language:Python1.1k206170

• KathanP19/JSFScan.sh

  Automation for javascript recon in bug bounty.

  Language:Shell9051733168

• hahwul/jwt-hack

  🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

  Language:Go7711618103

• dhaval17/awsome-security-write-ups-and-POCs

  Awesome Writeups and POCs

  508221120

• tomnomnom/fff

  The Fairly Fast Fetcher. Requests a bunch of URLs provided on stdin fairly quickly.

  Language:Go3909762

• bing0o/SubEnum

  bash script for Subdomain Enumeration

  Language:Shell3348964

• pikpikcu/XRCross

  XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

  Language:Shell33111971

• petercunha/jenkins-rce

  :smiling_imp: Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

  Language:Java2956166

• MuhammadKhizerJaved/Insecure-Firebase-Exploit

  A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.

  Language:Python2937582

• PortSwigger/ip-rotate

  Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

  Language:Python2374027

• bing0o/bash_scripting

  bash scripting thing!

  Language:Shell1835164

• chipik/SAP_GW_RCE_exploit

  SAP Gateway RCE exploits

  Language:Python1507352

• hahwul/mzap

  ⚡️ Multiple target ZAP Scanning

  Language:Go1034718

• zeroc00I/ReconNotes

  Just some public notes that can be useful and i want let the world knows.

  877041

• TheBinitGhimire/TheBinitGhimire

  🦸‍♂️ Software Engineer | Doing Offensive Security and DevSecOps! 🇳🇵

  5412

• gauravsachdev/Ctf_Or_LearningLabs

  My thought processes as I'm working through the labs for portswigger and Hackthebox. It's just to keep account of what labs/ctf I've done. My blog will have certain cts that I did while doing my CEH. This will be all of the rest. Helps me keep account of my progress and methodology.

  Language:Shell3101

• hunter0x8/weaponised-XSS-payloads

  XSS payloads designed to turn alert(1) into P1

  Language:JavaScript2001

• hunter0x8/facebook-bug-bounty-writeups

  Facebook Bug Bounties

  1100

• hunter0x8/parsel-rb

  Encrypt and decrypt data with a given key.

  Language:Ruby100

• hunter0x8/subzy

  Subdomain takeover vulnerability checker

  Language:Go100