fr34k8 / awesome-pentest

Related projects ⓘ

Alternatives and complementary repositories for awesome-pentest

• aungthurhahein / Red-Team-Curation-List
  A list to discover work of red team tooling and methodology for penetration testing and security assessment
  ☆78Updated 5 years ago
• pentesteracademy / vulnoscollection
  Vulnerable OS Collection is a collection of four Ubuntu based OSes containing real world vulnerable web applications.
  ☆57Updated 6 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆58Updated 5 years ago
• r00tgate / bugbounty101
  An entry level resource to learning bug bounty.
  ☆24Updated 6 years ago
• DFC302 / BugBountyTemplate
  A simple Cherry Tree template that can be used to organize bug bounties
  ☆34Updated 5 years ago
• viperbluff / Firebase-Extractor
  A tool written in python for scraping firebase data
  ☆42Updated 4 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆98Updated 3 weeks ago
• samhaxr / XXRF-Shots
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Updated last year
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆46Updated 4 years ago
• dsopas / XSS-oneliner-payload
  Compilation of JavaScript XSS oneliners payloads that rocks your nuts!
  ☆25Updated 7 years ago
• rudSarkar / T1tl3
  A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title
  ☆12Updated 5 years ago
• andr3w-hilton / Penetration_Testing_Resources
  This repo contains resources to help learn and understand penetration testing
  ☆15Updated 6 years ago
• Quitten / XSSor
  XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…
  ☆44Updated 3 years ago
• TROUBLE-1 / codeza
  This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.
  ☆37Updated 2 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆38Updated 5 years ago
• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆36Updated 7 years ago
• VincentDS / HackerOne-Notifier
  Send notifications if a new program is published on HackerOne using Pushbullet
  ☆25Updated 7 years ago
• hahwul / ras-fuzzer
  RAS(RAndom Subdomain) Fuzzer
  ☆43Updated 4 years ago
• bilbomal / BB-Tips
  Collection of Bug Bounty Tips
  ☆63Updated 4 years ago
• wwwarrior / BugBounty
  Cheat Sheets, Metodologies etc.
  ☆18Updated 5 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 5 years ago
• kobs0N / OSCP-Skills
  Skills To Improve Before Heading to OSCP
  ☆15Updated 7 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆70Updated 3 years ago