xomcoom

xomcoom's Stars

• trimstray/the-book-of-secret-knowledge

  A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

  149k2.5k09.6k

• enaqx/awesome-pentest

  A collection of awesome penetration testing resources, tools and other shiny things

  21.9k1.2k394.5k

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.3k1951.5k2.6k

• edoardottt/awesome-hacker-search-engines

  A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

  Language:Shell7.8k121115741

• daffainfo/AllAboutBugBounty

  All about bug bounty (bypasses, payloads, and etc)

  5.8k17161.1k

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell5.7k108456927

• ihebski/DefaultCreds-cheat-sheet

  One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

  Language:Python5.6k8716688

• hahwul/WebHackersWeapons

  ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

  Language:Ruby3.9k13031676

• projectdiscovery/uncover

  Quickly discover exposed hosts on the internet using multiple search engines.

  Language:Go2.4k3770203

• p0dalirius/Awesome-RCE-techniques

  Awesome list of step by step techniques to achieve Remote Code Execution on various apps!

  Language:Dockerfile1.8k4215217

• initstring/cloud_enum

  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

  Language:Python1.7k3929248

• saeidshirazi/awesome-android-security

  A curated list of Android Security materials and resources For Pentesters and Bug Hunters

  1.6k724246

• six2dez/pentest-book

  1.6k520571

• 0xKayala/NucleiFuzzer

  NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications

  Language:Shell1.3k1629200

• random-robbie/My-Shodan-Scripts

  Collection of Scripts for shodan searching stuff.

  Language:Python1.1k452338

• Puliczek/awesome-list-of-secrets-in-environment-variables

  🦄🔒 Awesome list of secrets in environment variables 🖥️

  86520475

• Dheerajmadhukar/karma_v2

  ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

  Language:Shell815925158

• p0dalirius/ApacheTomcatScanner

  A python script to scan for Apache Tomcat server vulnerabilities.

  Language:Python791123194

• LewisArdern/bXSS

  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

  Language:JavaScript516142664

• m0chan/h4cks

  Combination of all my Resources, Links & Scripts

  Language:C244140109

• nullfuzz-pentest/shodan-dorks

  Shodan Dorks

  2325247

• ex16x41/bugbounty

  always updating

  863018

• Dhamuharker/Xss-

  Awesome XSS Payloads

  844044

• orwagodfather/virustotalx

  ♥

  Language:Shell5317

• m0chan/Red-Teaming-Toolkit

  A collection of open source and commercial tools that aid in red team operations.

  413018