Pinned Repositories
assetfinder
Find domains and subdomains related to a given domain
crt.sh
(Unofficial) Python API for https://crt.sh
httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
MANSPIDER
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
meg
Fetch many paths for many hosts - without killing the hosts
RedEye-1
RedEye is a visual analytic tool supporting Red & Blue Team operations
SecretScanner
Find secrets and passwords in container images and file systems
Utils
A collection of hacks and one-off scripts
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
sec99's Repositories
sec99/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
sec99/Redeye
sec99/MicroBurst
A collection of scripts for assessing Microsoft Azure security
sec99/SAML-tracer
Browser extension for examining SAML messages
sec99/googerteller
audible feedback on just how much your browsing feeds into google
sec99/eaphammer
Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
sec99/onedrive_user_enum
onedrive user enumeration - pentest tool to enumerate valid o365 users
sec99/tink
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
sec99/kube-hunter
Hunt for security weaknesses in Kubernetes clusters
sec99/pwndoc
Pentest Report Generator
sec99/phoneinfoga
Information gathering & OSINT framework for phone numbers
sec99/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
sec99/Spray365
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.
sec99/evilportals
A collection of captive portals for phishing using a WiFi Pineapple
sec99/domainhunter
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
sec99/CTF-Difficulty
This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.
sec99/Asnlookup_2
Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
sec99/pwn_jenkins
Notes about attacking Jenkins servers
sec99/AppSecEzine
AppSec Ezine Public Repository.
sec99/ripgen
Rust-based high performance domain permutation generator.
sec99/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
sec99/MANSPIDER
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
sec99/abaddon
sec99/ivre
Network recon framework, published by @cea-sec & @ANSSI-FR
sec99/gimmeSH
For pentesters who don't wanna leave their terminals.
sec99/PNPT-Preparation-Guide
PNPT Exam Preparation - TCM Security
sec99/Acomplete-guide-to-dir-brute-force-admin-panel-and-API-endpoints
sec99/holehe
holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
sec99/meg
Fetch many paths for many hosts - without killing the hosts
sec99/PrintNightmare