nutthanonn's Stars
projectdiscovery/katana
A next-generation crawling and spidering framework.
0xk1h0/ChatGPT_DAN
ChatGPT DAN, Jailbreaks prompt
EdOverflow/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
blacklanternsecurity/bbot
A recursive internet scanner for hackers.
tomnomnom/waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
projectdiscovery/interactsh
An OOB interaction gathering server and client library
Pennyw0rth/NetExec
The Network Execution Tool
kozmer/log4j-shell-poc
A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
WADComs/WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
stealthcopter/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
CravateRouge/bloodyAD
BloodyAD is an Active Directory Privilege Escalation Framework
elkokc/reflector
Burp plugin able to find reflected XSS on page in real-time while browsing on site
caido/caido
🚀 Caido releases, wiki and roadmap
TrimarcJake/Locksmith
A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.
m8sec/subscraper
Subdomain and target enumeration tool built for offensive security testing
taviso/rbndr
Simple DNS Rebinding Service
honoki/bbrf-client
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
n0kovo/n0kovo_subdomains
An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
Quitten/doser.go
DoS tool for HTTP requests (inspired by hulk but has more functionalities)
gotr00t0day/spyhunt
recon for bug hunters
kevin-mizu/domloggerpp
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
sarperavci/CloudflareBypassForScraping
A cloudflare verification bypass script for webscraping
hackthebox/cyber-apocalypse-2024
Official writeups for Cyber Apocalypse CTF 2024: Hacker Royale
leetCipher/bug-bounty-labs
All the labs in this repository simulate real world bugs I found in the wild
hackvertor/blind-css-exfiltration
whitehat-zero/PowEnum
Executes common PowerSploit Powerview functions then combines output into a spreadsheet for easy analysis.
bhaveshk90/Content-Security-Policy-CSP-Bypass-Techniques
Content-Security-Policy (CSP) Bypass Techniques
user0x1337/CVE-2022-39227
CVE-2022-39227 : Proof of Concept
takabaya-shi/LFI2RCE
LFI to RCE tool.
d0rb/CVE-2023-42931
The exploit targets a critical privilege escalation vulnerability in macOS versions Monterey, Ventura, and Sonoma.