domssilva / vulnsearchLinks
A deep look at some recon methodologies and web-application vulnerabilities of my interest where I will merge all my notes gathered from books, videos, articles and own experience with bug bounty hunting / web and network hacking
☆105Updated 2 years ago
Alternatives and similar repositories for vulnsearch
Users that are interested in vulnsearch are comparing it to the libraries listed below
Sorting:
- ☆127Updated 4 years ago
- ASN reconnaissance script☆127Updated last year
- The project contains multiple shell scripts for automating the tasks during recon.☆176Updated last year
- You can read the writeup on this script here☆193Updated 3 years ago
- Various Payload wordlists☆236Updated last month
- A script that can resolve an input file of domains and scan them with masscan☆156Updated 4 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆173Updated 3 years ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- The tools I have programmed to help me with bugbounty's☆115Updated 5 years ago
- Random utilities from my security projects that might be useful to others☆180Updated 4 months ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- Python library and CLI for the Bug Bounty Recon API☆225Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆170Updated 4 years ago
- Web Application recon automation☆125Updated 4 years ago
- Trying to make automated recon for bug bounties☆253Updated 4 years ago
- CRLF and open redirect fuzzer☆111Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆167Updated last year
- Poor (rich?) man's bug bounty pipeline https://dubell.io☆274Updated 2 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆224Updated 4 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vu…☆236Updated 5 years ago
- How to prepare for OSCP complete guide☆129Updated 5 years ago
- Bucky (An automatic S3 bucket discovery tool)☆196Updated 3 years ago
- Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.☆99Updated last year
- This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.☆75Updated 5 years ago
- Repo of useful scripts☆104Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- ☆36Updated 5 years ago
- Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.☆148Updated 2 years ago
- ☆108Updated 4 years ago