Pinned Repositories
Amass
In-depth Attack Surface Mapping and Asset Discovery
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
broken-link-checker
Find broken links, missing images, etc within your HTML.
bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
bugbountyDorks
This repo contains all the Bug Bounty Dorks sourced from different awesome sources and compiled at one place
burpFakeIP
一个用于伪造ip地址进行爆破的Burp Suite插件
Can-I-take-over-xyz-v2
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
clickjack
Web based clickjack poc creator tool in python
secwiththamhv's Repositories
secwiththamhv/Amass
In-depth Attack Surface Mapping and Asset Discovery
secwiththamhv/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
secwiththamhv/broken-link-checker
Find broken links, missing images, etc within your HTML.
secwiththamhv/bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
secwiththamhv/bugbountyDorks
This repo contains all the Bug Bounty Dorks sourced from different awesome sources and compiled at one place
secwiththamhv/burpFakeIP
一个用于伪造ip地址进行爆破的Burp Suite插件
secwiththamhv/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
secwiththamhv/clickjackingpoc
A Proof of Concept for Clickjacking Attacks
secwiththamhv/commix
Automated All-in-One OS Command Injection Exploitation Tool.
secwiththamhv/Course-Resources
secwiththamhv/exif-samples
Sample images for testing Exif metadata retrieval.
secwiththamhv/Findomain
The complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.
secwiththamhv/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
secwiththamhv/knock
Knock Subdomain Scan
secwiththamhv/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
secwiththamhv/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
secwiththamhv/ParamSpider
Mining parameters from dark corners of Web Archives
secwiththamhv/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
secwiththamhv/sql-injection-payload-list
🎯 SQL Injection Payload List
secwiththamhv/sqlmap
Automatic SQL injection and database takeover tool
secwiththamhv/subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
secwiththamhv/subjack
Subdomain Takeover tool written in Go
secwiththamhv/Sublist3r
Fast subdomains enumeration tool for penetration testers
secwiththamhv/subzy
Subdomain takeover vulnerability checker
secwiththamhv/Veil
Veil 3.1.X (Check version info in Veil at runtime)
secwiththamhv/Web-Sec-CheatSheet
secwiththamhv/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
secwiththamhv/www-community
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
secwiththamhv/xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
secwiththamhv/XSStrike
Most advanced XSS scanner.