domssilva / vulnsearch
A deep look at some recon methodologies and web-application vulnerabilities of my interest where I will merge all my notes gathered from books, videos, articles and own experience with bug bounty hunting / web and network hacking
☆104Updated last year
Related projects ⓘ
Alternatives and complementary repositories for vulnsearch
- ☆122Updated 4 years ago
- The tools I have programmed to help me with bugbounty's☆115Updated 5 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆102Updated 4 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆169Updated 3 years ago
- You can read the writeup on this script here☆191Updated 3 years ago
- ☆71Updated 4 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆173Updated last year
- Python library and CLI for the Bug Bounty Recon API☆220Updated 3 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆84Updated 5 months ago
- Various Payload wordlists☆235Updated 4 years ago
- XSS Payload without Anything.☆102Updated 5 years ago
- Shodan subdomain finder☆64Updated 4 years ago
- ☆108Updated 4 years ago
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆95Updated 3 years ago
- Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.☆100Updated last year
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆166Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 4 years ago
- A script that can resolve an input file of domains and scan them with masscan☆155Updated 4 years ago
- Burp Extension for easily creating Wordlists☆210Updated 3 years ago
- Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.☆140Updated last year
- Bug Bounty Dork☆68Updated 2 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- A combined wordlists for files and directory discovery☆117Updated 3 years ago
- Web Application recon automation☆123Updated 3 years ago
- Bucky (An automatic S3 bucket discovery tool)☆192Updated 2 years ago
- A one liner Bash command which finds CORS in every possible endpoint.☆116Updated 3 years ago