machinexa2 / Nemesis

Related projects: ⓘ

• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆37Updated 3 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆54Updated last year
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆43Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• tamimhasan404 / Gau-Expose
  It grep subdomains, email/username, build custom wordlist etc from gau results
  ☆45Updated last year
• duckstroms / ssrf-search
  ☆13Updated this week
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆60Updated 10 months ago
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆35Updated 3 years ago
• bug-knr / KNR-XSS-Payloads
  ☆53Updated this week
• vikrantbatra05 / HuntTheBug
  Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…
  ☆48Updated 2 years ago
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆46Updated 7 months ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆28Updated 3 years ago
• eslam3kl / 3klector
  3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company
  ☆49Updated 2 years ago
• basubanakar / login-panel-wordlist
  ☆32Updated last year
• k4k4r07 / CertSubDumb
  Basic Bash Script to scrape all subdomains from crtsh in a single run
  ☆18Updated 2 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆72Updated 4 years ago
• Sicks3c / Reconizer
  ☆37Updated 3 years ago
• felipecaon / BugBountyStuff
  Stuff for bug bounty
  ☆26Updated last year
• zeronine9 / Blind_SPOT
  Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI
  ☆27Updated 3 years ago
• Ravirajrao / HackerOne-Reports
  Cool HackerOne Reports
  ☆17Updated last year
• noobexploiter / xssXD
  ☆28Updated this week
• subzero987 / S3-Recon
  S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners
  ☆26Updated 2 years ago
• emadshanab / Adobe-Experience-Manager
  ☆33Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆99Updated 3 years ago
• R0X4R / ssrf-tool
  An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.
  ☆43Updated 3 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆45Updated 3 years ago
• clarkvoss / Nuclei-Templates
  ☆59Updated 2 years ago
• gwen001 / bxss
  Alternative to XSS Hunter for blind XSS.
  ☆48Updated last year