gwen001 / pentest-tools
A collection of custom security tools for quick needs.
☆3,152Updated last year
Related projects ⓘ
Alternatives and complementary repositories for pentest-tools
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,057Updated last month
- A Workflow Engine for Offensive Security☆5,344Updated 5 months ago
- A python script that finds endpoints in JavaScript files☆3,724Updated 7 months ago
- A curated list of amazingly awesome Burp Extensions☆3,000Updated this week
- File upload vulnerability scanner and exploitation tool.☆3,053Updated last year
- HTTP parameter discovery suite.☆5,280Updated 2 weeks ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆4,869Updated this week
- Find domains and subdomains related to a given domain☆3,045Updated 5 months ago
- A Tool for Domain Flyovers☆5,644Updated 2 years ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆3,763Updated this week
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,684Updated 3 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆5,945Updated last year
- Take a list of domains and probe for working HTTP and HTTPS servers☆2,883Updated 4 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,106Updated 3 months ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,326Updated 3 weeks ago
- The Swiss Army knife for automated Web Application Testing☆2,166Updated 6 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,003Updated 3 weeks ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…☆2,035Updated 4 months ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆3,755Updated 3 months ago
- Awesome XSS stuff☆4,785Updated 3 weeks ago
- A collection of hacks and one-off scripts☆2,149Updated last year
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,091Updated 5 months ago
- Fetch all the URLs that the Wayback Machine knows about for a domain☆3,553Updated 6 months ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,332Updated 9 months ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,504Updated 9 months ago
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,164Updated this week
- ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting☆3,875Updated 3 weeks ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,014Updated 4 months ago
- Fast passive subdomain enumeration tool.☆10,300Updated this week
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,478Updated 2 years ago