mr-rizwan-syed / chomtesh
CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, making it a valuable asset for bug bounty hunters and penetration testers.
☆121Updated 3 months ago
Alternatives and similar repositories for chomtesh:
Users that are interested in chomtesh are comparing it to the libraries listed below
- Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utiliz…☆147Updated 11 months ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆148Updated 4 months ago
- Nodesub is a command-line tool for finding subdomains in bug bounty programs☆148Updated 8 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆97Updated 2 weeks ago
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆151Updated last year
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆149Updated 4 months ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆133Updated last year
- A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vect…☆75Updated 7 months ago
- A passive way to find backups/ sensitive information.☆77Updated 2 weeks ago
- 🔍 LFIer is a powerful and efficient tool for detecting Local File Inclusion (LFI) vulnerabilities in web applications.☆53Updated 3 months ago
- Find CVEs associated to Linux and public exploits on github☆117Updated last week
- ☆119Updated last year
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆92Updated 8 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆70Updated 2 months ago
- ☆147Updated 10 months ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆121Updated 7 months ago
- ☆161Updated 6 months ago
- A Personal Collection of Infosec Dorks☆199Updated last year
- ☆78Updated last year
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 8 months ago
- 📲 Enumerate app information through the APK file☆122Updated last month
- A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud☆117Updated 2 years ago
- Shodan Dorks 2023☆232Updated 3 months ago
- Hi everyone,☆59Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆112Updated 6 months ago
- Private Nuclei Templates☆98Updated last month
- OSCP Cheatsheet by Sai Sathvik☆68Updated last year
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆86Updated this week
- Here Are Some Bug Bounty Resource From Twitter☆90Updated 2 months ago
- GoogleDorker - Unleash the power of Google dorking for ethical hackers with custom search precision.☆178Updated 4 months ago