sandrogarcia

sandrogarcia's Stars

• alievk/avatarify-python

  Avatars for Zoom, Skype and other video-conferencing apps.

  Language:Python16.3k3266374.2k

• jpillora/chisel

  A fast TCP/UDP tunnel over HTTP

  Language:Go14k2043351.4k

• projectdiscovery/katana

  A next-generation crawling and spidering framework.

  Language:Go12.9k92297672

• testssl/testssl.sh

  Testing TLS/SSL encryption anywhere on any port

  Language:Shell8.1k1811.2k1k

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell5.9k109459948

• drk1wi/Modlishka

  Modlishka. Reverse Proxy.

  Language:Go4.9k141290886

• 0x90n/InfoSec-Black-Friday

  All the deals for InfoSec related software/tools this Black Friday

  3.8k31134431

• ambionics/phpggc

  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

  Language:PHP3.3k6561507

• opsdisk/pagodo

  pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching

  Language:Python2.9k8442497

• Checkmarx/kics

  Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

  Language:Open Policy Agent2.1k272k315

• xnl-h4ck3r/waymore

  Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

  Language:Python1.8k1648210

• 0xmaximus/Galaxy-Bugbounty-Checklist

  Tips and Tutorials for Bug Bounty and also Penetration Tests.

  1.4k313348

• xnl-h4ck3r/GAP-Burp-Extension

  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist

  Language:Python1.3k1335137

• RenwaX23/XSS-Payloads

  List of XSS Vectors/Payloads

  1.2k450254

• F6JO/RouteVulScan

  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

  Language:Java1.2k146686

• 0xacb/recollapse

  REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications

  Language:Python96915199

• jjolano/shadow

  A jailbreak detection bypass for modern iOS jailbreaks.

  Language:Logos85529159140

• trickest/resolvers

  The most exhaustive list of reliable DNS resolvers.

  713151070

• allanlw/svg-cheatsheet

  A cheatsheet for exploiting server-side SVG processors.

  70613192

• Emoe/kxss

  This a adaption of tomnomnom's kxss tool with a different output format

  Language:Go44481877

• NVISOsecurity/disable-flutter-tls-verification

  A Frida script that disables Flutter's TLS verification

  Language:C++361202957

• dark-warlord14/JSScanner

  You can read the writeup on this script here

  Language:Shell2695363

• yeswehack/pp-finder

  PP-finder Help you find gadget for prototype pollution exploitation

  Language:TypeScript1465317

• helviojunior/turbosearch

  The most powerfull Web Content Scanner

  Language:Python1178237

• c3l3si4n/thankunext

  Easily gather all routes related to a NextJs application through parsing of _buildManifest.js

  Language:Go57114

• apkunpacker/Root_Bypass

  Generic Frida Script To Bypass Root Detection

  Language:JavaScript544112

• kensh1ro/flutter-ssl-bypass

  Flutter SSL pinning bypass using IP forwarding

  491010

• PortSwigger/sqlmap-dns-collaborator

  Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap

  Language:Java363

• lucacapacci/SqlmapDnsCollaborator

  Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap

  Language:Java121210

• zeroc00I/eternalnoobchallenges

  This repository contains some challenges made to the understanding of how exploit some scenarios where there are security vulnerabilities and help to think about how to mitigate them =)

  Language:PHP4102