dsopas / assessment-mindsetLinks
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
☆744Updated 3 years ago
Alternatives and similar repositories for assessment-mindset
Users that are interested in assessment-mindset are comparing it to the libraries listed below
Sorting:
- Multi Tool Subdomain Enumeration☆725Updated 4 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆653Updated 6 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆454Updated 6 years ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆844Updated last year
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆446Updated 4 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆634Updated 6 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 5 years ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.☆1,255Updated 2 months ago
- Content discovery wordlists generated using BigQuery☆572Updated 5 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆353Updated 4 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆540Updated 2 years ago
- Repository for hosting my research papers☆510Updated last year
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆564Updated 2 years ago
- Simple shell script for automated domain recognition with some tools☆301Updated 4 years ago
- Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.☆463Updated 2 years ago
- Setup script for Regon-ng☆933Updated 4 years ago
- ☆599Updated last year
- An archive of everything related to OSCP☆620Updated 4 years ago
- stuff i'm willing to share with the world lol☆170Updated 2 years ago
- A collection of templates for bug bounty reporting☆408Updated 2 months ago
- Find AWS S3 buckets and test their permissions.☆390Updated 2 years ago
- Red Team Tactics, Techniques, and Procedures☆405Updated last month
- A highly configurable Framework for easy automated web scanning☆376Updated 5 years ago
- ☆818Updated last year
- Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.☆617Updated 3 years ago
- ☆276Updated 3 years ago
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT☆403Updated 2 months ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆299Updated 5 years ago
- A list of the resources I use as I get ready for the exam☆503Updated 2 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,241Updated last year