Md Nazmul Islam's Projects
🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation.
In-depth attack surface mapping and asset discovery
Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
Awesome Bug bounty builder Project
A collection of awesome one-liner scripts especially for bug bounty tips.
Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
This is a resource factory for anyone looking forward to starting bug hunting and would require guidance as a beginner.
Ressources for bug bounty hunting
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
A repository that includes all the important wordlists used while bug hunting.
Bug Bounty Tools used on Twitch - Recon
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
Automated All-in-One OS Command Injection Exploitation Tool.
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Dump files via Directory Traversal / LFI in a breeze with the help of ffuf
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Fast web fuzzer written in Go
Tips and Tutorials for Bug Bounty and also Penetration Tests.
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
Gospider - Fast web spider written in Go
Hacker101
A collection of hacks and one-off scripts
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.