codingo / guidesLinks
A companion repo to accompany detailed guides and YouTube content to allow users to follow along
☆13Updated 5 years ago
Alternatives and similar repositories for guides
Users that are interested in guides are comparing it to the libraries listed below
Sorting:
- My recon script☆50Updated 5 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- Takes a list of domains as the input, checks if they have a security.txt, outputs the results.☆16Updated 5 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 5 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆27Updated 3 years ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 4 years ago
- WebSocket Connection Smuggler☆47Updated 3 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆46Updated 2 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆58Updated 5 years ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆57Updated last year
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆22Updated 4 years ago
- A BurpSuite plugin for BBRF☆25Updated last year
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆86Updated 2 years ago
- Tool to find stored robots.txt files from the past☆18Updated 2 years ago
- whoareyou is a tool to find the underlying technology/software used in a list of websites passed through stdin (using Wappalyzer dataset)☆32Updated 5 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆30Updated 3 years ago
- An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.☆45Updated 10 months ago
- ☆24Updated 4 years ago
- Validate proxies for specific domain☆38Updated 4 years ago
- Offsec Pentest and Bug Bounty Notes☆25Updated 5 years ago
- Tool to extract & validate google fcm server keys from apks☆28Updated 4 years ago
- commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …☆39Updated 4 years ago
- ☆23Updated 3 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆58Updated 5 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 5 years ago
- ☆12Updated 4 years ago
- Get all the CNs from a list of domains☆45Updated 4 years ago
- Security test tool for Blind XSS☆26Updated 5 years ago
- qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.☆30Updated 5 years ago
- Literally spray blind xss payloads everywhere.☆26Updated 3 years ago