InfoSecWarrior / Offensive-EnumerationLinks
Penetration testing tools cheat sheet, a quick reference high level overview for typical penetration testing engagements. Convenient commands for your pentesting / red-teaming engagements, OSCP and CTFs.
☆86Updated last week
Alternatives and similar repositories for Offensive-Enumeration
Users that are interested in Offensive-Enumeration are comparing it to the libraries listed below
Sorting:
- A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…☆77Updated 8 months ago
- LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.☆110Updated 10 months ago
- Scripts that are intended to help you in your pen-testing and bug-hunting efforts by automating various manual tasks, making your work mo…☆92Updated last month
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆128Updated last year
- OWASP based Web Application Security Testing Checklist☆78Updated last year
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆152Updated last year
- XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.☆151Updated last year
- Here Are Some Bug Bounty Resource From Twitter☆101Updated 4 months ago
- smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter☆155Updated last year
- My useful files for penetration tests, security assessments, bug bounty and other security related stuff☆186Updated this week
- A wordlist generator tool, that allows you to supply a set of words, giving you the possibility to craft multiple variations from the giv…☆109Updated 2 years ago
- Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the target. Comfortabl…☆165Updated 2 months ago
- This repository contains a curated list of websites and repositories featuring pentest & red-team resources such as cheatsheets, write-up…☆68Updated last month
- Collect XSS vulnerable parameters from entire domain.☆153Updated 3 years ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆92Updated last year
- A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vect…☆75Updated last year
- CTF writeups - Tryhackme, HackTheBox, Vulnhub☆40Updated 4 years ago
- Red Teaming tools and techniques☆55Updated 2 years ago
- A powerful and sophisticated tool for detecting and exploiting open redirect vulnerabilities using the sed utility and a selected list of…☆48Updated last year
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…☆105Updated last year
- ScopeHunter is a command-line tool for finding in scope targets for bug bounty programs.☆70Updated last year
- SetMyKali is a bash based tool to configure and customize kali linux☆69Updated 3 years ago
- ☆78Updated 2 years ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆158Updated 10 months ago
- How to search on the shodan.io website☆122Updated 5 years ago
- In this repo, I have included the tools that i used for my everyday penetration tests, if you have just installed kali and lost your tool…☆30Updated last year
- ☆44Updated 3 years ago
- A curated list wordlists for bruteforcing and fuzzing☆83Updated 2 years ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆134Updated last year
- Sub-Domain TakeOver Vulnerability Scanner (edoardottt fork)☆69Updated 8 months ago