shayansec

shayansec's Stars

• zapstiko/Hacking-PDF

  Here Are Some Popular Hacking PDF

  19643

• 0xsha/GoLinkFinder

  A fast and minimal JS endpoint extractor

  Language:Go30244

• tuhin1729/Bug-Bounty-Methodology

  These are my checklists which I use during my hunting.

  Language:HTML55878

• gracenolan/Notes

  2k397

• B3nac/Android-Reports-and-Resources

  A big list of Android Hackerone disclosed reports and other resources.

  1.4k300

• CyberSecurityUP/Guide-CEH-Practical-Master

  1.2k370

• Bo0oM/fuzz.txt

  Potentially dangerous files

  2.9k482

• xnl-h4ck3r/GAP-Burp-Extension

  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist

  Language:Python1.2k131

• sw33tLie/bbscope

  Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

  Language:Go973141

• KingOfBugbounty/KingOfBugBountyTips

  Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

  Language:Go4.2k794

• gmelodie/awesome-wordlists

  A curated list wordlists for bruteforcing and fuzzing

  716120

• devanshbatham/ParamSpider

  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

  Language:Python2.5k418

• devanshbatham/OpenRedireX

  A fuzzer for detecting open redirect vulnerabilities

  Language:Python690129

• payloadbox/xxe-injection-payload-list

  🎯 XML External Entity (XXE) Injection Payload List

  1.1k293

• payloadbox/command-injection-payload-list

  🎯 Command Injection Payload List

  2.9k620

• jdonsec/AllThingsSSRF

  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location

  1.2k229

• the-xentropy/samlists

  Free, libre, effective, and data-driven wordlists for all!

  53074

• xdavidhu/awesome-google-vrp-writeups

  🐛 A list of writeups from the Google VRP Bug Bounty program

  Language:Python1.1k186

• Proviesec/google-dorks

  Useful Google Dorks for WebSecurity and Bug Bounty

  945173

• gquere/pwn_jenkins

  Notes about attacking Jenkins servers

  Language:Python1.9k321

• ticarpi/jwt_tool

  :snake: A toolkit for testing, tweaking and cracking JSON Web Tokens

  Language:Python5.3k664

• pentestmonkey/php-reverse-shell

  Language:PHP2.2k1.8k

• xnl-h4ck3r/waymore

  Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

  Language:Python1.6k190

• hackerscrolls/SecurityTips

  981167

• edoardottt/companies-hiring-security-remote

  List of companies that hire security people full remote.

  512

• Karanxa/Bug-Bounty-Wordlists

  A repository that includes all the important wordlists used while bug hunting.

  1.2k317

• orwagodfather/x

  8940

• andresriancho/enumerate-iam

  Enumerate the permissions associated with AWS credential set

  Language:Python1.1k172

• MrEmpy/mantra

  「🔑」A tool used to hunt down API key leaks in JS files and pages

  Language:Go55754

• tamimhasan404/Chart-Of-Wordlist

  Chart-Of-Wordlist helps to create your own custom wordlist. Also in one repository, you can find a list of awesome wordlist.

  5912