amolnaik4 / bodhi

Related projects: ⓘ

• devsecboy / DomainRecon
  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…
  ☆154Updated 4 months ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆154Updated 4 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆102Updated 2 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆217Updated 3 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆121Updated 7 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆85Updated 8 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 3 years ago
• Coalfire-Research / sqlinator
  Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
  ☆81Updated last year
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆136Updated 4 years ago
• vulnersCom / burp-Dirbuster
  Dirbuster plugin for Burp Suite
  ☆70Updated 7 years ago
• exploitprotocol / app-sec-wiki
  Files for appsecwiki.com
  ☆113Updated 4 years ago
• ak1t4 / open-redirect-scanner
  ☆207Updated this week
• n3k / Pentest
  Notes/Tools for pentesting
  ☆82Updated 9 months ago
• OpenSourcePentest / tools
  Tools used for Penetration testing / Red Teaming
  ☆65Updated 5 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆162Updated 4 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆279Updated 2 months ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆104Updated 5 years ago
• Securityautomation / DumpTheGit
  DumpTheGit searches through public repositories to find sensitive information uploaded to the Github repositories.
  ☆86Updated 5 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆136Updated 3 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆75Updated 4 years ago
• joesmithjaffa / jenkins-shell
  Automating Jenkins Hacking using Shodan API
  ☆94Updated 6 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆80Updated 5 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆200Updated 7 months ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆130Updated last year
• glen-mac / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆110Updated 5 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• quentinhardy / scriptsAndExploits
  Some scripts and exploits
  ☆142Updated 6 years ago
• vegabird / xvna
  Extreme Vulnerable Node Application
  ☆94Updated 5 years ago
• executeatwill / OSCP-Treasure-Cave
  Collection of OSCP study material && tools.
  ☆77Updated 5 years ago