Write-ups of my findings.
☆123Sep 2, 2023Updated 2 years ago
Alternatives and similar repositories for Write-Ups
Users that are interested in Write-Ups are comparing it to the libraries listed below
Sorting:
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆20Mar 13, 2023Updated 3 years ago
- ☆22Nov 3, 2022Updated 3 years ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆141Sep 16, 2024Updated last year
- Filter URLs to save your time.☆60Jul 29, 2022Updated 3 years ago
- script python to check url list via cookies and Authorization☆19Feb 28, 2023Updated 3 years ago
- Private Nuclei Templates☆99Feb 24, 2025Updated last year
- Recon-Ninja☆86Mar 24, 2024Updated last year
- SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects info…☆22Mar 16, 2023Updated 3 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆25Apr 19, 2023Updated 2 years ago
- A proof of concept program that pulls and parses security.txt files at mass.☆29May 31, 2023Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆374Jul 25, 2023Updated 2 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆384May 19, 2023Updated 2 years ago
- Most of the Google Acquisitions for Bug Bounty Hunter.☆64Sep 3, 2022Updated 3 years ago
- In this repo, I have created a subdomain enumeration function that grab subdomains in deep.☆23Mar 19, 2023Updated 3 years ago
- ☆13Jun 12, 2023Updated 2 years ago
- ☆94Dec 2, 2021Updated 4 years ago
- ☆20Apr 5, 2023Updated 2 years ago
- Script to read input from stdin and encode it☆19Aug 23, 2023Updated 2 years ago
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆41Feb 4, 2023Updated 3 years ago
- A path-normalization pentesting tool.☆152Jan 22, 2026Updated 2 months ago
- 1337 Wordlists for Bug Bounty Hunting☆937Updated this week
- Will share some interesting writeups here :)☆18Oct 18, 2023Updated 2 years ago
- The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.☆439Jul 11, 2022Updated 3 years ago
- ☆47Jan 14, 2024Updated 2 years ago
- Find related domains of a given domain.☆104Aug 5, 2023Updated 2 years ago
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆581Sep 25, 2025Updated 5 months ago
- Smart context-based SSRF vulnerability scanner.☆360May 5, 2022Updated 3 years ago
- You can find hardcoded Api-Key,Secret,Token Etc..☆77Sep 3, 2022Updated 3 years ago
- Fetch Javascript sourcemaps, bounty hunter style☆42May 21, 2023Updated 2 years ago
- Never forget where you inject.☆299Aug 15, 2025Updated 7 months ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆25Feb 11, 2023Updated 3 years ago
- ☆1,116Jul 26, 2023Updated 2 years ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,297Aug 7, 2025Updated 7 months ago
- Here Are Some Bug Bounty Resource From Twitter☆123Feb 18, 2026Updated last month
- Stay on the beat with SubHound - receive notifications for new subdomains on Telegram and Discord! 🐶🎵☆17Jun 4, 2023Updated 2 years ago
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆305Mar 12, 2024Updated 2 years ago
- Google Dorking Payloads☆12Jun 24, 2024Updated last year
- Automated Subdomain Enumeration and Scanning Tool☆116Oct 5, 2023Updated 2 years ago