InfoSecWarrior / Offensive-Pentesting-Scripts
Scripts that are intended to help you in your pen-testing and bug-hunting efforts by automating various manual tasks, making your work more efficient and effective.
☆87Updated last month
Alternatives and similar repositories for Offensive-Pentesting-Scripts:
Users that are interested in Offensive-Pentesting-Scripts are comparing it to the libraries listed below
- A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…☆63Updated 2 months ago
- My useful files for penetration tests, security assessments, bug bounty and other security related stuff☆165Updated this week
- Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utiliz…☆147Updated 11 months ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆92Updated 8 months ago
- ☆105Updated last year
- OWASP based Web Application Security Testing Checklist☆71Updated 9 months ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆148Updated 4 months ago
- Here Are Some Bug Bounty Resource From Twitter☆90Updated 2 months ago
- OSCP preperation and HackTheBox write ups.☆58Updated 2 years ago
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆151Updated last year
- Custom scan profiles for use with Burp Suite Pro☆141Updated last year
- Private Nuclei Templates☆98Updated 2 months ago
- Automated Subdomain Enumeration and Scanning Tool☆113Updated last year
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…☆99Updated 6 months ago
- ☆64Updated 8 months ago
- Penetration testing tools cheat sheet, a quick reference high level overview for typical penetration testing engagements. Convenient comm…☆69Updated this week
- Nodesub is a command-line tool for finding subdomains in bug bounty programs☆148Updated 8 months ago
- Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…☆80Updated last month
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆96Updated 7 months ago
- A collection of solutions for every PortSwigger Academy Lab (in progress)☆96Updated 3 years ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 8 months ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆133Updated last year
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Updated 3 months ago
- Automated Tool for Testing Header Based Blind SQL Injection☆277Updated last year
- smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter☆154Updated last year
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆149Updated 4 months ago
- ☆60Updated 2 months ago
- ☆119Updated last year
- Never forget where you inject.☆228Updated 2 years ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆121Updated 7 months ago