Pinned Repositories
assetfinder
Find domains and subdomains related to a given domain
crt.sh
(Unofficial) Python API for https://crt.sh
httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
MANSPIDER
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
meg
Fetch many paths for many hosts - without killing the hosts
RedEye-1
RedEye is a visual analytic tool supporting Red & Blue Team operations
SecretScanner
Find secrets and passwords in container images and file systems
Utils
A collection of hacks and one-off scripts
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
sec99's Repositories
sec99/urlhunter
a recon tool that allows searching on URLs that are exposed via shortener services
sec99/Redcloud
Automated Red Team Infrastructure deployement using Docker
sec99/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
sec99/raw
The missing link between spreadsheets and data visualization
sec99/docker-burp-suite-pro
Burp Suite Professional in a Docker container.
sec99/dnsx
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.
sec99/bypass-403
A simple script just made for self use for bypassing 403
sec99/json2csv
Convert json to csv with column titles
sec99/CVE-2020-14882_ALL
CVE-2020-14882_ALL综合利用工具,支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。
sec99/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
sec99/CVE-2020-14883
sec99/CVE-2020-14882
CVE-2020–14882、CVE-2020–14883
sec99/CloudBrute
Awesome cloud enumerator
sec99/wraith
Finding digital secrets that were never meant to be found in all corners of the net.
sec99/scripthunter
Tool to find JavaScript files on Websites
sec99/PNPT-Windows-Privilege-Escalation-Resources
Compilation of Resources from TCM's Windows Priv Esc Udemy Course
sec99/PNPT-Linux-Privilege-Escalation-Resources
Compilation of Resources for TCM's Linux Privilege Escalation course
sec99/amass-tools
sec99/burpcollaborator-docker
This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate. The objective is to simplify as much as possible the process of setting up and maintaining the server.
sec99/gf-patterns-1
A repository of some useful grep patterns for tomnomnoms gf tool
sec99/awesome-indie
Resources for independent developers to make money
sec99/GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
sec99/gitfinder
sec99/ActiveDirectoryEnumeration
Enumerate AD through LDAP with a collection of helpfull scripts being bundled
sec99/KingOfBugBountyTips
sec99/h2csmuggler
HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
sec99/binaryedge-cheatsheet
A list of queries and actions that I repeat over and over again
sec99/Weylus
Use your tablet as graphic tablet/touch screen on your computer.
sec99/shuffledns
shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
sec99/algo
Set up a personal VPN in the cloud