naufalan / Web-App-Methodology
Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testing, or CTF
☆13Updated 3 years ago
Alternatives and similar repositories for Web-App-Methodology:
Users that are interested in Web-App-Methodology are comparing it to the libraries listed below
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 4 years ago
- ☆32Updated 2 years ago
- ☆38Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆48Updated 2 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- XSS Finder Via SSTI☆55Updated last year
- ☆22Updated 3 years ago
- ☆38Updated 4 years ago
- Small script to check a list of domains against open redirect vulnerability☆26Updated 3 years ago
- Stuff for bug bounty☆28Updated 2 years ago
- A solid recon tool I use personally.☆30Updated last year
- This is GitHub_Dorks and some tips i collect from different resources.Recon_Api is tip when you find token or api without knowing what to…☆21Updated 3 years ago
- ☆21Updated 2 years ago
- Bug Bounty Recon wordlist Generator☆21Updated 4 years ago
- ☆22Updated 3 years ago
- BugBuntu Linux☆15Updated 3 years ago
- Intentionally Vulnerable Nodejs Application & APIs☆22Updated 3 years ago
- ☆42Updated 3 years ago
- An Automation Tool Written in Python which uses Twitter and GitHub API☆16Updated 3 years ago
- ☆11Updated 4 years ago
- Single-WebApp-Target essentials testing methodology tool starting at recon-information gathering for the juicy stuff ended up in exploita…☆22Updated 3 years ago
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆58Updated 2 years ago
- Oneliners curated from my experience and from the internet☆22Updated 4 years ago
- S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners☆27Updated 3 years ago
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆27Updated 4 years ago
- ☆19Updated 3 years ago
- ☆12Updated 3 years ago
- BurpSiute - BurpBounty Profiles☆19Updated 2 years ago
- Basic Bash Script to scrape all subdomains from crtsh in a single run☆19Updated 2 years ago