1amunvalid Goto Github PK
Name: 1amUnvalid
Type: User
Bio: Another Tester/ Bug Hunter - Collection Of Tools from H1 / Bugcrowd & Synack users
Name: 1amUnvalid
Type: User
Bio: Another Tester/ Bug Hunter - Collection Of Tools from H1 / Bugcrowd & Synack users
Actarus is a custom tool for bug bounty
A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
In-depth DNS Enumeration and Network Mapping
Checklist of the most important security countermeasures when designing, testing, and releasing your API
A Tool for Domain Flyovers
A Burp Extension designed to identify argument injection vulnerabilities.
Specify targets and run sets of tools against them
Tool to automate common OSINT tasks
A collection of various awesome lists for hackers, pentesters and security researchers
Collection of the cheat sheets useful for pentesting
Collection of Blogs & Links to Refer
An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker Compose
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Burp-Addons : Some of Burp Addons I use ( Mindak ak fahem )
Fuzzing for LFI using Burpsuite
Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for BurpSuite Pro for bypassing web application firewalls (WAF) and XSS filters. These python scripts have been created to fuzz wierd combinations: URL Escape Characters HTML Escape Characters Binary Characters These scripts were created during an assessment, while trying to bypass a Web Application Firewall (WAF) in order to exploit a XSS vulnerability. Differnt webservers and browsers interpret URL and strange characters differently which could lead to the bypassing of security controls. When I tried to send a > or < character the WAF would block the request. The following URL escapes I have noticed are traslated to < > ' by Apache2 based web servers: %(N%(n%)S%)U%)^%)s%)u%*C%*E%*c%*e%,.%.#%1N%1n%2S%2U%2^%2s%2u%3C%3E%3c%3e%5.%7#%:C%:E %:c%:e%HN%Hn%IS%IU%I^%Is%Iu%JC%JE%Jc%Je%L.%N#%XN%Xn%YS%YU%Y^%Ys%Yu%ZC%ZE%Zc%Ze%.%^# %hN%hn%iS%iU%i^%is%iu%jC%jE%jc%je%l.%n#%xN%xn%yS%yU%y^%ys%yu%zC%zE%zc%ze%|
Web Content Discovery Tool
Pen testing checklist (yet another one).
Pentesting checklists for various engagements
WikiLeaks Vault 7 CIA Hacking Tools
Automated All-in-One OS command injection and exploitation tool.
Gather and update all available and newest CVEs with their PoC.
Advanced Web Shell
Automate getting Domain Admin using Empire (https://github.com/EmpireProject/Empire)
Web path scanner
A Burp Suite Extender that search sub domain and similar domain from sitemap
LFI/RFI scanner by Iman Karim ([email protected])
A tool to capture all the git secrets by leveraging multiple open source git searching tools
Exploit pack for pentesters and ethical hackers.
Directory/file & DNS busting tool written in Go
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.