dsopas / assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
☆734Updated 2 years ago
Alternatives and similar repositories for assessment-mindset:
Users that are interested in assessment-mindset are comparing it to the libraries listed below
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆451Updated 5 years ago
- Content discovery wordlists generated using BigQuery☆565Updated 4 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆645Updated 6 years ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.�☆1,237Updated 10 months ago
- Multi Tool Subdomain Enumeration☆726Updated 3 years ago
- Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.☆463Updated 2 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆440Updated 4 years ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆840Updated 10 months ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 4 years ago
- This repository created for personal use and added tools from my latest blog post.☆348Updated 2 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆257Updated 3 years ago
- ☆807Updated last year
- ☆360Updated 3 years ago
- ☆576Updated last year
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆634Updated 6 years ago
- Simple shell script for automated domain recognition with some tools☆299Updated 4 years ago
- ☆423Updated 2 years ago
- Repository for hosting my research papers☆506Updated 11 months ago
- A Powerful Subdomain Takeover Tool☆942Updated last year
- Tools of "The Bug Hunters Methodology V2 by @jhaddix"☆198Updated 7 years ago
- ☆274Updated 3 years ago
- Find AWS S3 buckets and test their permissions.☆379Updated last year
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆350Updated 4 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆364Updated 2 years ago
- A collection of templates for bug bounty reporting☆392Updated 3 years ago
- stuff i'm willing to share with the world lol☆171Updated 2 years ago
- A collection of useful Serverless functions I use when pentesting☆382Updated 2 years ago
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆413Updated 4 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆527Updated 6 years ago
- ☆462Updated 4 years ago