ravindra887's Stars
Static-Flow/gofingerprint
GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
Droidzzzio/EnumerationList
This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
Broly157/auto.sh
This script is (Mainly) for Beginner's
hackingguy/Bug-Hunting-Colab
A Colab For Bug Hunting!
payloadbox/xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
jobertabma/ground-control
A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
djadmin/awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
nahamsec/recon_profile
vitalysim/totalrecon
TotalRecon installs all the recon tools you need
EdOverflow/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
1ndianl33t/Gf-Patterns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
tomnomnom/gron
Make JSON greppable!
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files
nahamsec/JSParser
owasp-amass/amass
In-depth attack surface mapping and asset discovery
jmdx/TLS-poison
zaproxy/zap-extensions
ZAP Add-ons
anantshri/svn-extractor
simple script to extract all web resources by means of .SVN folder exposed over network.
ffuf/ffuf
Fast web fuzzer written in Go
RandomRobbieBF/service-now
Service-Now Article Bruteforcer
maurosoria/dirsearch
Web path scanner
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
jdonsec/AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
mcguinness/saml-idp
Simple SAML Identity Provider (IdP) for Node
Ignitetechnologies/Privilege-Escalation
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
veeral-patel/how-to-secure-anything
How to systematically secure anything: a repository about security engineering
prometheus/prometheus
The Prometheus monitoring system and time series database.
hakluke/weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1