m0pam

m0pam's Stars

• projectdiscovery/katana

  A next-generation crawling and spidering framework.

  Language:Go13.2k90305693

• shmilylty/OneForAll

  OneForAll是一款功能强大的子域收集工具

  Language:Python8.8k1003271.3k

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell6.1k111469977

• EdOverflow/can-i-take-over-xyz

  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

  Language:Python5.1k122250743

• arkadiyt/bounty-targets-data

  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

  3.3k2410599

• devanshbatham/ParamSpider

  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

  Language:Python2.7k37100437

• obheda12/GitDorker

  A Python program to scrape secrets from GitHub through usage of a large repository of dorks.

  Language:Python2.4k6738427

• federicodotta/Brida

  The new bridge between Burp Suite and Frida!

  Language:Java1.7k43126209

• 0xmaximus/Galaxy-Bugbounty-Checklist

  Tips and Tutorials for Bug Bounty and also Penetration Tests.

  1.5k313353

• QAX-A-Team/BrowserGhost

  这是一个抓取浏览器密码的工具，后续会添加更多功能

  Language:C#1.4k247206

• jacopotediosi/GAppsMod

  Tweak Google apps (e.g., Phone and Messages) to unlock hidden features (e.g., available only in some countries or on certain devices). Root is required.

  Language:Java1.2k21047

• sw33tLie/bbscope

  Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

  Language:Go1.1k2151157

• indianajson/can-i-take-over-dns

  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.

  1k323195

• drak3hft7/Cheat-Sheet---Active-Directory

  This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.

  5529093

• Brum3ns/firefly

  Black box fuzzer for web applications

  Language:Go4254938

• pwndoc-ng/pwndoc-ng

  Pentest Report Generator

  Language:JavaScript397911491

• sw33tLie/sns

  IIS shortname scanner written in Go

  Language:Go3236544

• seeu-inspace/easyg

  Here I gather all the resources about hacking that I find interesting

  Language:Ruby2677047

• hackvertor/hackvertor

  Language:Java191510651

• ssl/shortboost

  Unicode characters that will translate a single character to multiple characters in domain names or TLD's

  40301

• drak3hft7/Subscan4

  Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merged into one file.

  Language:Shell23102

• felipecaon/wpsechelper

  Seecurity helper tool to detect entry points of WordPress plugins

  Language:Python10101

• m0pam/crtsh-fetcher

  Fetches domains from https://crt.sh/

  Language:Shell6100

• Pushpamk/waybackparam

  Find all the parameter from urls generated with waybackurls

  Language:Shell6200