ngalongc / Security_list

Related projects: ⓘ

• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆75Updated 4 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 5 years ago
• upgoingstar / hackerone_public_reports
  Finds all public bug reports on reported on Hackerone
  ☆90Updated 8 years ago
• jhaddix / scripts
  Usefull stuff from around teh internetz
  ☆109Updated 6 years ago
• 0ang3el / EasyCSRF
  ☆160Updated 6 years ago
• ak1t4 / open-redirect-scanner
  ☆207Updated this week
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 8 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆162Updated 4 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆101Updated 3 years ago
• masatokinugawa / HTTPLeaks
  HTTPLeaks - All possible ways, a website can leak HTTP requests
  ☆9Updated 2 months ago
• Cleveridge / cleveridge-subdomain-scanner
  The Cleveridge Subdomain Scanner finds subdomains of a given domain.
  ☆36Updated 4 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 9 years ago
• jhaddix / pwnwiki.github.io
  PwnWiki - The notes section of the pentesters mind.
  ☆24Updated 10 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆85Updated 8 years ago
• OrOneEqualsOne / reconned
  ☆115Updated this week
• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆36Updated 6 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆148Updated 6 years ago
• avlidienbrunn / bountydash
  BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
  ☆139Updated last year
• debasishm89 / burpy
  Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…
  ☆118Updated 6 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆130Updated last year
• meliht / TaktikselBugHunting
  Taktiksel Bug Hunting Yöntemleri
  ☆44Updated 7 years ago
• clirimemini / Keye
  Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…
  ☆100Updated 4 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 3 years ago
• jhaddix / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆24Updated 8 years ago
• ollseg / ttt-ext
  Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.
  ☆82Updated 5 years ago
• zigoo0 / Pemburu
  Pemburu AKA GoldDigger.
  ☆72Updated 4 years ago
• j0bin / Pentest-Resources
  ☆119Updated 7 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆121Updated 3 months ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆45Updated 11 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆46Updated 4 years ago