Pinned Repositories
awesome-cve-poc
✍️ A curated list of CVE PoCs.
js-finding
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file download and wordlists creation.
mtk-su
mtk-su
nodesub
Nodesub is a command-line tool for finding subdomains in bug bounty programs
nuclei-templates
Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.
nuubi
Nuubi Tools (Information-ghatering|Scanner|Recon.)
Pentest-Tools-Framework
Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities
XRCross
XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
subfinder
Fast passive subdomain enumeration tool.
pikpikcu's Repositories
pikpikcu/awesome-cve-poc
✍️ A curated list of CVE PoCs.
pikpikcu/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
pikpikcu/ResIm
ResIm is designed as a bash tool to find out domains,subdomains,ip subdomains, ports, DNS
pikpikcu/WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
pikpikcu/crlfi
pikpikcu/dotfile
pikpikcu/my-nuclei-templates
pikpikcu/wadl-dumper
Dump all available paths and/ endpoints on WADL file.
pikpikcu/xssmap
XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
pikpikcu/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
pikpikcu/Awesome-WAF
🔥 Everything about web-application firewalls (WAF).
pikpikcu/Bug-Bounty-Toolz
BBT - Bug Bounty Tools
pikpikcu/bugbounty
Bugbounty Resources
pikpikcu/festin
FestIn - S3 Bucket Weakness Discovery
pikpikcu/gitleaks
Scan git repos for secrets using regex and entropy 🔑
pikpikcu/KingOfBugBountyTips
pikpikcu/nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
pikpikcu/Payloads_xss_sql_bypass
pikpikcu/PoC-in-GitHub
📡 PoC auto collect from GitHub.
pikpikcu/teler
Real-time HTTP Intrusion Detection
pikpikcu/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
pikpikcu/unew
A tool for append URLs, skipping duplicates & combine parameters.
pikpikcu/Awesome-Asset-Discovery
List of Awesome Asset Discovery Resources
pikpikcu/BB-Templates
pikpikcu/bbrf-dashboard
pikpikcu/jaeles-signatures
Default signature for Jaeles Scanner
pikpikcu/Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
pikpikcu/learn-regex
Learn regex the easy way
pikpikcu/public-bugbounty-programs
Community curated list of public bugbounty and responsible disclosure programs.
pikpikcu/ssrf-tool