nagaxor

nagaxor's Stars

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP58.1k1.9k26723.9k

• chubin/cheat.sh

  the only cheat sheet you need

  Language:Python38.3k5842481.8k

• TheKingOfDuck/fuzzDicts

  Web Pentesting Fuzz 字典,一个就够了。

  Language:Python7.5k157102.4k

• Kozea/WeasyPrint

  The awesome document factory

  Language:Python7.2k1331.9k680

• j3ssie/osmedeus

  A Workflow Engine for Offensive Security

  Language:Go5.3k133224879

• euske/pdfminer

  Python PDF Parser (Not actively maintained). Check out pdfminer.six.

  Language:Python5.3k2202451.1k

• blacklanternsecurity/bbot

  A recursive internet scanner for hackers.

  Language:Python4.7k38839421

• epinna/tplmap

  Server-Side Template Injection and Code Injection Detection and Exploitation Tool

  Language:Python3.8k8279671

• gwen001/pentest-tools

  A collection of custom security tools for quick needs.

  Language:Python3.1k10913790

• swisskyrepo/SSRFmap

  Automatic SSRF fuzzer and exploitation tool

  Language:Python3k5624517

• joaomatosf/jexboss

  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

  Language:Python2.4k9560639

• luijait/DarkGPT

  DarkGPT is an OSINT assistant based on GPT-4-200K (recommended use) designed to perform queries on leaked databases, thus providing an artificial intelligence assistant that can be useful in your traditional OSINT processes.

  Language:Python2.1k3221274

• m4ll0k/SecretFinder

  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files

  Language:Python2k4770374

• jordanpotti/AWSBucketDump

  Security Tool to Look For Interesting Files in S3 Buckets

  Language:Python1.4k478240

• bitquark/shortscan

  An IIS short filename enumeration tool

  Language:Go77071573

• dwisiswant0/ppfuzz

  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀

  Language:Rust57172254

• s0md3v/Parth

  Heuristic Vulnerable Parameter Scanner

  Language:Python56714495

• R-s0n/ars0n-framework

  A Modern Framework for Bug Bounty Hunting

  Language:JavaScript493230136

• hakluke/hakip2host

  hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.

  Language:Go4249362

• neex/ffmpeg-avi-m3u-xbin

  Language:Python413133140

• pr0cf5/kernel-exploit-practice

  repository for kernel exploit practice

  Language:Batchfile38612249

• americo/sqlifinder

  SQL Injection Vulnerability Scanner made with Python

  Language:Python3323869

• tijme/angularjs-csti-scanner

  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.

  Language:Python302161687

• SAPT01/HBSQLI

  Automated Tool for Testing Header Based Blind SQL Injection

  Language:Python2634360

• danialhalo/SqliSniper

  Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers

  Language:Python2484138

• Ebryx/GitDump

  A pentesting tool that dumps the source code from .git even when the directory traversal is disabled

  Language:Python2164235

• W01fh4cker/CVE-2023-46747-RCE

  exploit for f5-big-ip RCE cve-2023-46747

  Language:Python2022345

• neex/ghostinthepdf

  Language:Go1597124

• HernanRodriguez1/SQLi_Sleeps

  Language:Python1082022

• faiyazahmad07/WEBSTER

  A modern tool written in python for hunting open redirection

  Language:Python24336