six2dez / pentest-book

Related projects: ⓘ

• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,547Updated 3 weeks ago
• dwisiswant0 / awesome-oneliner-bugbounty
  A collection of awesome one-liner scripts especially for bug bounty tips.
  ☆2,628Updated last month
• netbiosX / Checklists
  Red Teaming & Pentesting checklists for various engagements
  ☆2,474Updated 3 weeks ago
• bigb0sss / RedTeam-OffensiveSecurity
  Tools & Interesting Things for RedTeam Ops
  ☆2,129Updated last year
• devanshbatham / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆2,461Updated 2 months ago
• lutfumertceylan / top25-parameter
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,680Updated 3 months ago
• S3cur3Th1sSh1t / Pentest-Tools
  ☆2,130Updated 11 months ago
• ihebski / A-Red-Teamer-diaries
  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
  ☆1,719Updated 3 months ago
• assetnote / wordlists
  Automated & Manual Wordlists provided by Assetnote
  ☆1,284Updated last month
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,949Updated 2 months ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆2,943Updated 2 months ago
• Tib3rius / Pentest-Cheatsheets
  ☆1,033Updated 3 years ago
• sagishahar / lpeworkshop
  Windows / Linux Local Privilege Escalation Workshop
  ☆1,845Updated last year
• tomnomnom / httprobe
  Take a list of domains and probe for working HTTP and HTTPS servers
  ☆2,821Updated 2 months ago
• sh377c0d3 / Payloads
  Payload Arsenal for Pentration Tester and Bug Bounty Hunters
  ☆881Updated last year
• imran-parray / Mind-Maps
  Mind-Maps of Several Things
  ☆2,427Updated last year
• The-XSS-Rat / SecurityTesting
  ☆1,004Updated 4 months ago
• Karanxa / Bug-Bounty-Wordlists
  A repository that includes all the important wordlists used while bug hunting.
  ☆1,167Updated last year
• mandatoryprogrammer / xsshunter-express
  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
  ☆1,519Updated 6 months ago
• tomnomnom / assetfinder
  Find domains and subdomains related to a given domain
  ☆2,971Updated 3 months ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,895Updated 3 years ago
• Ignitetechnologies / BurpSuite-For-Pentester
  This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 …
  ☆2,192Updated last year
• wwong99 / pentest-notes
  ☆1,475Updated last year
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,695Updated 5 months ago
• tomnomnom / waybackurls
  Fetch all the URLs that the Wayback Machine knows about for a domain
  ☆3,435Updated 4 months ago
• streaak / keyhacks
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆4,850Updated last month
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,315Updated last year
• payloadbox / xxe-injection-payload-list
  🎯 XML External Entity (XXE) Injection Payload List
  ☆1,066Updated 2 months ago
• dafthack / CloudPentestCheatsheets
  This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…
  ☆2,509Updated 11 months ago
• m4ll0k / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆1,960Updated 3 months ago