Pinned Repositories
Amass
In-depth DNS Enumeration and Network Mapping
git-hound
GitHound pinpoints exposed API keys on GitHub using pattern matching, commit history searching, and a unique result scoring system. A batch-catching, pattern-matching, patch-attacking secret snatcher.
meg
Fetch many paths for many hosts - without killing the hosts
myinfo
rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
pager5Cx415Cx415Cx69's Repositories
pager5Cx415Cx415Cx69/4-ZERO-3
403/401 Bypass Methods + Bash Automation + Your Support ;)
pager5Cx415Cx415Cx69/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
pager5Cx415Cx415Cx69/Bheem
pager5Cx415Cx415Cx69/Bug-Hunting-Colab
A Colab For Bug Hunting!
pager5Cx415Cx415Cx69/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
pager5Cx415Cx415Cx69/confused
Tool to check for dependency confusion vulnerabilities in multiple package management systems
pager5Cx415Cx415Cx69/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
pager5Cx415Cx415Cx69/demo_bot
🤖 Fork me to try out Dependabot
pager5Cx415Cx415Cx69/dnsvalidator
Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.
pager5Cx415Cx415Cx69/FavFreak
Making Favicon.ico based Recon Great again !
pager5Cx415Cx415Cx69/GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
pager5Cx415Cx415Cx69/HowToHunt
Tutorials and Things to Do while Hunting Vulnerability.
pager5Cx415Cx415Cx69/JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
pager5Cx415Cx415Cx69/nuclei-action-demo
Vulnerability Scan with Nuclei
pager5Cx415Cx415Cx69/nuclei-appsec-workflows-demo
pager5Cx415Cx415Cx69/openapi_security_scanner
pager5Cx415Cx415Cx69/pd-actions
Continuous recon and vulnerability assessment using Github Actions.
pager5Cx415Cx415Cx69/pentest-guide
Penetration tests guide based on OWASP including test cases, resources and examples.
pager5Cx415Cx415Cx69/rdse
Extracts subdomains from a specified domain using https://recon.dev.
pager5Cx415Cx415Cx69/reconftw
ReconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
pager5Cx415Cx415Cx69/shodandorks
pager5Cx415Cx415Cx69/smuggler
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
pager5Cx415Cx415Cx69/svn-extractor
simple script to extract all web resources by means of .SVN folder exposed over network.
pager5Cx415Cx415Cx69/targets
A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
pager5Cx415Cx415Cx69/vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
pager5Cx415Cx415Cx69/Vulnerabilities-Approach-Slides
PDF slides
pager5Cx415Cx415Cx69/vulnerable-site-demo
A deliberately vulnerable website used to showcase Dastardly from Burp Suite - Demo Practice
pager5Cx415Cx415Cx69/WordList
pager5Cx415Cx415Cx69/xss-demo-demo
Simple flask website to demonstrate reflected and stored XSS attacks.
pager5Cx415Cx415Cx69/xss-sample-app-demo