whalebone7 Goto Github PK
Type: User
Type: User
A collection of hacker tools using HackerOne's API
awesome tool.
BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Bug Bounty Tools used on Twitch - Recon
CertSub is a Bash command-line tool that extracts subdomains associated with a domain name. It uses crt.sh to perform a search and returns a sorted, unique list. It's useful for reconnaissance, identifying attack vectors, or gaining insight into subdomains.
Collection of knowledge about information security
CloudSniffer is a powerful tool designed to aid in the discovery of the real IP address of a website protected by Cloudflare. It leverages brute force techniques by testing a list of IP addresses and analyzing the status codes returned by the server to uncover the actual IP address of the target website.
POC for CVE-2023-24489 with bash.
This light weight tool allows you to search for Common Vulnerabilities and Exposures (CVEs) based on a vulnerability keyword and an optional year filter.
A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
Collection of Cyber Threat Intelligence sources from the deep and dark web
Automating the SQL/XSS Injection through GooglE/Github dorks for bug bounty
https://www.nu11secur1ty.com
To filter the actual vulnerable URLs from the screenshots, you can use the ee.sh script. Simply run ./ee.sh -f "path/to/index_screenshot.txt" -k "hacked" and the script will filter the URLs that contain the reflective XSS payload (For Example: cPanel CVE-2023-29489 ) in their screenshots.
Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.
1337 Wordlists for Bug Bounty Hunting
GitSniff searches for a specific keyword in the code of GitHub repositories using an access token, and reports back the repository name, owner, and path where the keyword was found. It is useful for bug bounty hunters to find vulnerable code and potential security issues in repositories.
Useful Google Dorks for WebSecurity and Bug Bounty
Approx 10.000 lines of Google dorks search queries - Use this for research purposes only
Google Dorks | Google helps you to find Vulnerable Websites that Indexed in Google Search Results. Here is the latest collection of Google Dorks. A collection of 13.760 Dorks. Author: Jolanda de Koff
Probe a rendering engine for vulnerabilities and other features
Top disclosed reports from HackerOne
A container repository for my public web hacks!
This Bash script retrieves SSL/TLS certificates associated with a specified company name and searches Censys for their SHA256 fingerprints. The results are saved to a file.
Shodan Dorks
`hs` organizes subdomains into separate files based on their status codes and stores them in a "sorted" directory. It simplifies subdomain management and helps users quickly identify and access subdomains based on their respective status codes.
Differential testing and fuzzing of HTTP servers and proxies
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.