shamo0's Stars
streaak/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
dwisiswant0/awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
0xInfection/Awesome-WAF
🔥 Web-application firewalls (WAFs) from security standpoint.
R-s0n/Bug_Bounty_Notes
A collection of notes for bug bounty hunting
minimaxir/big-list-of-naughty-strings
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
R-s0n/ars0n-framework
A Modern Framework for Bug Bounty Hunting
mandatoryprogrammer/xsshunter
The XSS Hunter service - a portable version of XSSHunter.com
The-XSS-Rat/SecurityTesting
dgtlmoon/changedetection.io
The best and simplest free open source web page change detection, website watcher, restock monitor and notification service. Restock Monitor, change detection. Designed for simplicity - Simply monitor which websites had a text change for free. Free Open source web page change detection, Website defacement monitoring, Price change notification
dwisiswant0/apkleaks
Scanning APK file for URIs, endpoints & secrets.
xnl-h4ck3r/waymore
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!
ameenmaali/wordlistgen
Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
0xDexter0us/Scavenger
Burp extension to create target specific and tailored wordlist from burp history.
danielmiessler/Source2URL
Parse source code directories and output list of URLs that are then sent through a proxy.
assetnote/wordlists
Automated & Manual Wordlists provided by Assetnote
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
bee-san/RustScan
🤖 The Modern Port Scanner 🤖
projectdiscovery/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
jaeles-project/jaeles
The Swiss Army knife for automated Web Application Testing
grahamzemel/WebHeckScanner
A hacking tool for bug bounties. Sharing and modifying is encouraged!
t3l3machus/PowerShell-Obfuscation-Bible
A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.
I-Am-Jakoby/Flipper-Zero-BadUSB
Repository for my flipper zero badUSB payloads. Now almost entirely plug and play.
pielco11/fav-up
IP lookup by favicon using Shodan
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
UberGuidoZ/Flipper
Playground (and dump) of stuff I make or modify for the Flipper Zero
djsime1/awesome-flipperzero
🐬 A collection of awesome resources for the Flipper Zero device.
hahwul/WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
InsiderPhD/hackerone-reports
Top disclosed reports from HackerOne
sundowndev/phoneinfoga
Information gathering framework for phone numbers