osamahamad / Sensitive-Data-Exposures-with-GithubLinks
Techniques / Tips and tricks for finding sensitive data exposures in Github for Penetration Testers / Bug Bounty Hunters
☆17Updated 5 years ago
Alternatives and similar repositories for Sensitive-Data-Exposures-with-Github
Users that are interested in Sensitive-Data-Exposures-with-Github are comparing it to the libraries listed below
Sorting:
- Oneliners curated from my experience and from the internet☆22Updated 4 years ago
- ☆10Updated 2 years ago
- Cool HackerOne Reports☆22Updated 2 years ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆20Updated 2 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 4 years ago
- Credax - Fuzzing Tool with Slack Notifications. Also removes false positive responses.☆10Updated 3 years ago
- Some of the gf patterns which i use☆44Updated 3 years ago
- ☆21Updated 4 years ago
- Magic Header Blind Xss tool (deliver blind xss payloads in request headers).☆26Updated 4 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- ☆14Updated 4 years ago
- All The Notes And Tips I FOund In Github And Twitter I Put Them Here☆35Updated 4 years ago
- Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…☆55Updated 3 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆45Updated 4 years ago
- Hidden input parameters finder☆18Updated 2 years ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Updated last year
- A Tool to find subdomains from hackerone reports.☆17Updated 4 years ago
- A solid recon tool I use personally.☆30Updated 2 years ago
- BugBounty , sort and delete duplicates param value without missing original value☆22Updated 4 years ago
- ☆12Updated 3 years ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated 2 years ago
- A simple utility to generate domain names with all possible TLDs☆23Updated 2 years ago
- Alternative to XSS Hunter for blind XSS.☆51Updated 2 years ago
- XSS Finder Via SSTI☆56Updated last year
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Updated 3 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆22Updated 4 years ago
- Some Tutorials and Things to Help Bug Hunter☆29Updated 4 years ago
- In this repo, I have created a subdomain enumeration function that grab subdomains in deep.☆22Updated 2 years ago
- Check if domain has bug bounty program or not☆28Updated 2 years ago