gosirys / Offensive

Related projects: ⓘ

• gwen001 / detectify-cves
  Find CVEs that don't have a Detectify modules.
  ☆21Updated last year
• aliyugombe / reflector
  ☆13Updated last year
• xnl-h4ck3r / HandE-Burp-Extension
  H&E- Burp Highlighter and Extractor
  ☆17Updated last year
• MrMafiaP / Notes
  ☆14Updated this week
• xalgord / Mass-ParamSpider
  (Mass) Mining parameters from dark corners of Web Archives
  ☆1Updated last year
• BrownBearSec / Utils-and-Wrappers
  A repo for tools, utils, and wrappers that are to small to put in their own repo.
  ☆23Updated last year
• random-robbie / wayback-saver
  Saves pages to Wayback machine
  ☆13Updated 2 years ago
• leetIbrahim / JSNotify
  ☆18Updated 10 months ago
• az7rb / subdomain-apiST
  subdomain enumeration | This is a tool designed to enumerate subdomains using the securitytrails.com API
  ☆8Updated 2 years ago
• JoshMorrison99 / isXSS-Burp
  Passively check for XSS character encodings
  ☆20Updated last year
• SirBugs / Offy
  offy is a tool for bugbounty hunters to save money in their EC2 instances
  ☆12Updated last year
• ethicalhackingplayground / erebus-templates
  Community curated list of templates for the erebus engine to find security vulnerabilities.
  ☆16Updated 3 years ago
• LeDoubleTake / nuclei-templates
  List of custom Nuclei templates
  ☆15Updated 10 months ago
• 0x2458bughunt / CVE-2023-25157
  ☆12Updated last year
• geeknik / nuclei-template-generator
  A simple tool which makes creating nuclei templates even easier.
  ☆35Updated 2 months ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• aaditya2098 / noobstuffs
  Xss payload for bypassing waf
  ☆13Updated 4 years ago
• HernanRodriguez1 / ScanReflectedXSS
  ☆44Updated last year
• r00tkie / grep-pattern
  collection of various grep patterns collected from tomnomnom/gf and other places
  ☆20Updated 3 years ago
• zeronine9 / Blind_SPOT
  Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI
  ☆27Updated 3 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆54Updated last year
• hahwul / xssmaze
  XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnera…
  ☆23Updated 4 months ago
• YouGina / wordlistweaver
  Quick tool to create custom wordlists like how fuzzers work
  ☆11Updated 11 months ago
• MShahine / Bug-Bounty-Recon
  All The Notes And Tips I FOund In Github And Twitter I Put Them Here
  ☆29Updated 4 years ago
• Sybil-Scan / TLDbrute
  A simple utility to generate domain names with all possible TLDs
  ☆23Updated last year
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• notmarshmllow / credax
  Credax - Fuzzing Tool with Slack Notifications. Also removes false positive responses.
  ☆10Updated 2 years ago
• bsysop / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆16Updated 3 years ago
• gwen001 / favicon-hashtrick
  Python script implementing the favicon hash trick to find subdomains.
  ☆26Updated last year
• ap062 / bba
  bug bounty automation
  ☆12Updated 3 years ago