bpavesi Goto Github PK

public-bugbounty-programs

Community curated list of public bug bounty and responsible disclosure programs.

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

race-condition-exploit

Tool to help with the exploitation of web application race conditions

rawhttp

A Go library for making HTTP requests with complete control

rawhttp-1

Raw HTTP client in Go for complete request control and customization.

rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with mi

restler-fuzzer

RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.

rfi-lfi-payload-list

🎯 RFI/LFI Payload List

rogue-jndi

A malicious LDAP server for JNDI injection attacks

security-mindmap

This repository stores various roadmap(Mindmaps) for bug bounty Hunter, pentester, offensive(red team), defensive(blue team) and security Professional people

skipfish

Web application security scanner created by lcamtuf for google - Unofficial Mirror

smbmap

SMBMap is a handy SMB enumeration tool - here with Kerberos support

sni_bruter

TLS SNI virtual hosts bruteforcer

sns

IIS shortname scanner written in Go

spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

spring4shell-poc

This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).

sql-injection-payload-list

🎯 SQL Injection Payload List

sqli-hunter-v2

The second version of SQL Hunter. SQLi Hunter is a URL (Blind) SQL injection checker for multiple pages.

ssrf-finder

Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.

ssrfmap

Automatic SSRF fuzzer and exploitation tool

targets

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

tbhm

The Bug Hunters Methodology

tls-attacker

TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can be used to manually test TLS clients and servers or as as a software library for more advanced tools.

tomcat-webshell-application

A webshell application and interactive shell for pentesting Apache Tomcat servers.

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

vulnerability-checklist

vulnerable-ad

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

vulnerable-nginx

An intentionally vulnerable NGINX setup

web-attack-cheat-sheet

Web Attack Cheat Sheet

webshell

dirt simple jsp webshell