fr34k8 / awesome-pentest

Related projects ⓘ

Alternatives and complementary repositories for awesome-pentest

• DFC302 / BugBountyTemplate
  A simple Cherry Tree template that can be used to organize bug bounties
  ☆35Updated 5 years ago
• Quitten / XSSor
  XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…
  ☆44Updated 3 years ago
• pentesteracademy / vulnoscollection
  Vulnerable OS Collection is a collection of four Ubuntu based OSes containing real world vulnerable web applications.
  ☆57Updated 6 years ago
• r00tgate / bugbounty101
  An entry level resource to learning bug bounty.
  ☆24Updated 6 years ago
• aungthurhahein / Red-Team-Curation-List
  A list to discover work of red team tooling and methodology for penetration testing and security assessment
  ☆78Updated 5 years ago
• andr3w-hilton / Penetration_Testing_Resources
  This repo contains resources to help learn and understand penetration testing
  ☆15Updated 6 years ago
• samhaxr / XXRF-Shots
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Updated last year
• HSIS007 / Red-Team-And-Adversary-Tactics
  Purpose of this repository is to help all the beginner and experienced professionals to understand,learn and share new tricks for the com…
  ☆31Updated 6 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆75Updated 5 years ago
• esecuritylab / kostebek
  ☆89Updated last year
• hahwul / ras-fuzzer
  RAS(RAndom Subdomain) Fuzzer
  ☆43Updated 4 years ago
• viperbluff / Firebase-Extractor
  A tool written in python for scraping firebase data
  ☆42Updated 4 years ago
• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆36Updated 7 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆58Updated 5 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆97Updated last month
• Cleveridge / cleveridge-subdomain-scanner
  The Cleveridge Subdomain Scanner finds subdomains of a given domain.
  ☆36Updated 4 years ago
• rudSarkar / T1tl3
  A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title
  ☆12Updated 5 years ago
• BugBountyResources / Pentesting
  Misc. Public Reports of Penetration Testing and Security Audits.
  ☆33Updated 3 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 5 years ago
• Shiva108 / WAES
  CPH:SEC WAES: Web Auto Enum & Scanner - Auto enums website(s) and dumps files as result
  ☆68Updated last year
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 5 years ago
• snoopysecurity / Public
  Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.
  ☆26Updated last year
• punk-AJ / oscpnotes
  These are my notes for OSCP preparation. Hope you'll find them useful.
  ☆14Updated 5 years ago