wwwarrior

wwwarrior's Stars

• JaidedAI/EasyOCR

  Ready-to-use OCR with 80+ supported languages and all popular writing scripts including Latin, Chinese, Arabic, Devanagari, Cyrillic and etc.

  Language:Python23.9k3159843.1k

• djsime1/awesome-flipperzero

  🐬 A collection of awesome resources for the Flipper Zero device.

  18.4k6410806

• elceef/dnstwist

  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

  Language:Python4.8k155123767

• reddelexc/hackerone-reports

  Top disclosed reports from HackerOne

  Language:Python3.8k14610706

• BishopFox/jsluice

  Extract URLs, paths, secrets, and other interesting bits from JavaScript

  Language:Go1.4k141487

• xalgord/Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes

  A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

  1.3k2410204

• sleeyax/burp-awesome-tls

  Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

  Language:Java1.2k146075

• devploit/nomore403

  Tool to bypass 403/40X response codes.

  Language:Go1.1k1422128

• nikitastupin/clairvoyance

  Obtain GraphQL API schema even if the introspection is disabled

  Language:Python1k126692

• laluka/bypass-url-parser

  bypass-url-parser

  Language:Python1k125105

• sw33tLie/bbscope

  Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

  Language:Go9871845143

• indianajson/can-i-take-over-dns

  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.

  965313090

• FoxIO-LLC/ja4

  JA4+ is a suite of network fingerprinting standards

  Language:Rust911227681

• assetnote/nowafpls

  Burp Plugin to Bypass WAFs through the insertion of Junk Data

  Language:Python8579694

• p0dalirius/ApacheTomcatScanner

  A python script to scan for Apache Tomcat server vulnerabilities.

  Language:Python775123194

• sAjibuu/Upload_Bypass

  A simple tool for bypassing file upload restrictions.

  Language:Python7631013125

• jthack/PIPE

  Prompt Injection Primer for Engineers

  3528132

• 0ang3el/websocket-smuggle

  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests

  Language:Python33312254

• intrudir/BypassFuzzer

  Fuzz 401/403/404 pages for bypasses

  Language:Python2443526

• pdelteil/BugBountyReportTemplates

  List of reporting templates I have used since I started doing BBH.

  2307056

• microservices-security-in-action/samples

  Microservices Security in Action Book Samples

  Language:Java224224161

• iann0036/iam-dataset

  A consolidated cloud IAM dataset

  Language:Python222131923

• doyensec/wsrepl

  WebSocket REPL for pentesters

  Language:Python1994212

• FonduAI/awesome-prompt-injection

  Learn about a type of vulnerability that specifically targets machine learning models

  1716030

• nxenon/h2spacex

  HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks

  Language:Python127226

• BojackThePillager/Slackhound

  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, locations, files, and other objects.

  Language:Python73307

• Jet-Security-Team/DevSecOps-Assessment-Framework

  DevSecOps Assessment Framework

  59549

• dinosn/synackDUO

  Python Duo Push API

  Language:Python28108

• braindead-sec/ssh-grabber

  Language:Shell12204

• vankyver/directus-aspm-poc

  PoC of using Directus as ASPM

  Language:JavaScript63