Pinned Repositories
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
90DaysOfDevOps
This repository is my documenting repository for learning the world of DevOps. I started this journey on the 1st January 2022 and I plan to run to March 31st for a complete 90-day romp on spending an hour a day including weekends to get a foundational knowledge across a lot of different areas that make up DevOps.
ApachSAL
It's a vulnerability scanner tool for test Apache Path Traversal 👾
Apktool
A tool for reverse engineering Android apk files
AppTesting
Audit-Reports-Practice
awesome-blockchain
⚡️Curated list of resources for the development and applications of blockchain.
awesome-ethereum-security
A curated list of awesome Ethereum security references
DeFi-Developer-Road-Map
DeFi Developer roadmap is a curated Web3.0 Developer handbook which includes a list of the best tools for DApps, development resources and lifehacks.
Web3-Security-Researcher-Roadmap
An updated roadmap to help you become a web3 security researcher
piyushimself's Repositories
piyushimself/apk-mitm
🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection
piyushimself/awesome-bugbounty-builder
Awesome Bug bounty builder Project
piyushimself/bbFuzzing.txt
piyushimself/Bug_Bounty_Notes
A collection of notes for bug bounty hunting
piyushimself/bugbounty-wordlist
Real world bug bounty wordlists
piyushimself/cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
piyushimself/cloudlist
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
piyushimself/developer-security-training
All Labs of the Security for Developers Training
piyushimself/ezXSS
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
piyushimself/FFUF-Tips-And-Tricks
Describe how to use ffuf different options with examples
piyushimself/frogy
My subdomain enumeration script. It's unique in the way it is built upon.
piyushimself/fuzzuli
fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
piyushimself/GET-AUTOMATOR
Automates Arjun and speed up parameter bruteforcing
piyushimself/Hackerone-onemillion-public-reports
bug bounty disclosed reports
piyushimself/JSFScan.sh
Automation for javascript recon in bug bounty.
piyushimself/knock
Knock Subdomain Scan
piyushimself/Manual_Testing
This repository contains the General Test Cases for performing Manual Testing on the Web/Mobile application. It also has Test cases related to API Testing. Templates related to Test Plan and BugBash are also updated.
piyushimself/Mindmap
piyushimself/paramix
Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.
piyushimself/Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
piyushimself/piyushimself
piyushimself/Private-Nuclei-Templates
piyushimself/resolvers_reconftw
Resolvers updated daily for reconftw
piyushimself/revwhoix
A simple utility to perform reverse WHOIS lookups using whoisxml API
piyushimself/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
piyushimself/telminal
A Terminal in Telegram!
piyushimself/unfurl
Pull out bits of URLs provided on stdin
piyushimself/WhatWaf
Detect and bypass web application firewalls and protection systems
piyushimself/Wordlist404
Small but effective wordlist for brute-forcing and discovering hidden things.
piyushimself/XSSFire
A standalone Blind XSS Script.