thecybotage's Stars
enjoiz/XXEinjector
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
itm4n/PPLdump
Dump the memory of a PPL with a userland exploit
stealthcopter/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
fuzzdb-project/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
assetnote/kiterunner
Contextual Content Discovery Tool
spipm/Depix
Recovers passwords from pixelized screenshots
mandiant/capa
The FLARE team's open-source tool to identify capabilities in executable files.
sushiwushi/bug-bounty-dorks
List of Google Dorks for sites that have responsible disclosure program / bug bounty program
techgaun/github-dorks
Find leaked secrets via github search
enaqx/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
ahussam/url-tracker
Change monitoring app that checks the content of web pages in different periods.
Tylous/Limelighter
A tool for generating fake code signing certificates or signing real ones
internetwache/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
JonathanSalwan/ROPgadget
This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC, MIPS, RISC-V 64, and RISC-V Compressed architectures.
S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Ne0nd0g/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
wifiphisher/wifiphisher
The Rogue Access Point Framework
blacklanternsecurity/writehat
A pentest reporting tool written in Python. Free yourself from Microsoft Word.
pwndoc/pwndoc
Pentest Report Generator
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
google/tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
tomnomnom/unfurl
Pull out bits of URLs provided on stdin
haccer/subjack
Subdomain Takeover tool written in Go
x90skysn3k/brutespray
Bruteforcing from various scanner output - Automatically attempts default creds on found services.
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files
httpvoid/writeups
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.