Pinned Repositories
awesome-cve-poc
✍️ A curated list of CVE PoCs.
js-finding
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file download and wordlists creation.
mtk-su
mtk-su
nodesub
Nodesub is a command-line tool for finding subdomains in bug bounty programs
nuclei-templates
Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.
nuubi
Nuubi Tools (Information-ghatering|Scanner|Recon.)
Pentest-Tools-Framework
Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities
XRCross
XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
subfinder
Fast passive subdomain enumeration tool.
pikpikcu's Repositories
pikpikcu/XRCross
XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
pikpikcu/nodesub
Nodesub is a command-line tool for finding subdomains in bug bounty programs
pikpikcu/nuclei-templates
Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.
pikpikcu/js-finding
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file download and wordlists creation.
pikpikcu/nuclei-fuzz
pikpikcu/hostinject
hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a target URL or a list of URLs. It injects various header values and checks for potential vulnerabilities.
pikpikcu/nodecraw
nodecraw allows you to perform web crawling on specified URLs. It utilizes various modules and libraries to crawl web pages, extract information, and save the results.
pikpikcu/bash-recon
[+] bash recon
pikpikcu/CloudFail
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
pikpikcu/bug-actions
pikpikcu/jaeles
The Swiss Army knife for automated Web Application Testing
pikpikcu/open-source-web-scanners
A list of open source web security scanners
pikpikcu/tlds
pikpikcu/axiom
A dynamic infrastructure toolkit for red teamers and bug bounty hunters!
pikpikcu/bbot
OSINT automation for hackers.
pikpikcu/cent
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
pikpikcu/dProgBb
Detect Program Bug Bounty
pikpikcu/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
pikpikcu/SubOver
A Powerful Subdomain Takeover Tool
pikpikcu/TheFatRat
Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software
pikpikcu/fuzzing-templates
Community curated list of nuclei templates for finding unknown security vulnerabilities.
pikpikcu/osrframework
OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.
pikpikcu/payloads
pikpikcu/pikpikcu
pikpikcu/postmarketos-x01ad
pikpikcu/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
pikpikcu/subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
pikpikcu/test
pikpikcu/test-takeover
pikpikcu/xss-actions