Pinned Repositories
assetfinder
Find domains and subdomains related to a given domain
crt.sh
(Unofficial) Python API for https://crt.sh
httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
MANSPIDER
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
meg
Fetch many paths for many hosts - without killing the hosts
RedEye-1
RedEye is a visual analytic tool supporting Red & Blue Team operations
SecretScanner
Find secrets and passwords in container images and file systems
Utils
A collection of hacks and one-off scripts
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
sec99's Repositories
sec99/proxycannon-ng
A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWHF 2018 security conference
sec99/Red-Team-Resources-collection
sec99/xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
sec99/bbtips
BugBountyTips
sec99/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
sec99/Pinaak
A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
sec99/Mind-Maps
Mind-Maps of Several Things
sec99/gitleaks
Scan git repos (or files) for secrets using regex and entropy 🔑
sec99/bug-bounty-dorks
List of Google Dorks for sites that have responsible disclosure program / bug bounty program
sec99/Recon-1
Recon is a script to perform a full recon on a target with the main tools to search for vulnerabilities. Created based on @ofjaaah and @Jhaddix methodologies
sec99/DNSStager
Hide your payload in DNS
sec99/pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
sec99/fdns
Concurrent Rapid7 FDNS dataset parser
sec99/rusolver
Fast and accurate DNS resolver.
sec99/Dynamic-DTD
A python Flask app that generates dynamic DTDs for easy out-of-band data exfiltration.
sec99/CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
sec99/Sub-Drill
A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
sec99/pencode
Complex payload encoder
sec99/External-Pentest-Checklist
sec99/VPS-web-hacking-tools
Automatically install some web hacking/bug bounty tools.
sec99/atuin
🐢 Magical shell history
sec99/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
sec99/sd-goo
sec99/jenkins-attack-framework
sec99/cli
Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)
sec99/puredns
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
sec99/interactsh
An OOB interaction gathering server and client library
sec99/h1stats
a tool that compiles a csv of all h1 program stats
sec99/smbmap
SMBMap is a handy SMB enumeration tool
sec99/Solr-SSRF
Apache Solr SSRF(CVE-2021-27905)