lemosnlmb's Stars
m4ll0k/Atlas
Quick SQLMap Tamper Suggester
dwisiswant0/findom-xss
A fast DOM based XSS vulnerability scanner with simplicity.
trufflesecurity/trufflehog
Find, verify, and analyze leaked credentials
ksharinarayanan/SSRFire
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
barrracud4/image-upload-exploits
This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.
christophetd/CloudFlair
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
BetterDiscord/BetterDiscord
Better Discord enhances Discord desktop app with new features.
tennc/webshell
This is a webshell open source project
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Cyber-Junk/OSCP-Preparation-Guide
It is a compilation of some resources for preparing for OSCP.
Quitten/doser.go
DoS tool for HTTP requests (inspired by hulk but has more functionalities)
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
shifa123/clickjackingpoc
A Proof of Concept for Clickjacking Attacks
hackerscrolls/SecurityTips
yunemse48/403bypasser
KathanP19/HowToHunt
Collection of methodology and test case for various web vulnerabilities.
tomnomnom/waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
tomnomnom/anew
A tool for adding new lines to files, skipping duplicates
1ndianl33t/Gf-Patterns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
trustedsec/social-engineer-toolkit
The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.