Stars
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Remove duplicates from MASSIVE wordlist, without sorting it (for dictionary-based password cracking)
This repo contain scripts written for finding subdomains using various available tools
XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Top disclosed reports from HackerOne
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…
Collection of methodology and test case for various web vulnerabilities.
A tool to find subdomains or domains from passive sources.
Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Docker image that provides features similar to Burp Collaborator
Automation for javascript recon in bug bounty.
take a list of old subdomain and new subdomain and the output is the deleted subdomain and the new subdomain
RECON Notes taking from every fucking book about bugbounty and web-app penetration testing exists
Secret and/or credential patterns used for gf.
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
A one liner Bash command which finds CORS in every possible endpoint.
A Payload Injector for bugbounties written in go
Awesome list dedicated to Windows Subsystem for Linux
Cross-site scripting labs for web application security enthusiasts
A collection of all the data i could extract from 1 billion leaked credentials from internet.
Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...