Offsec Pentest and Bug Bounty Notes
☆24May 28, 2020Updated 5 years ago
Alternatives and similar repositories for secrets
Users that are interested in secrets are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Exploits for different vulnerabilities☆13Nov 29, 2021Updated 4 years ago
- ☆12May 16, 2020Updated 5 years ago
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago
- ☆21Dec 4, 2014Updated 11 years ago
- Automated tool to find backup files that may disclose a website's source code☆20Oct 13, 2022Updated 3 years ago
- ☆11May 15, 2020Updated 5 years ago
- A handy plugin for copying requests/responses directly from Burp, some extra magic included.☆13Oct 15, 2021Updated 4 years ago
- A set of tools, procedures, and playbooks for performing bug bounties☆17Dec 2, 2018Updated 7 years ago
- This repo contain scripts written for finding subdomains using various available tools☆28Oct 21, 2020Updated 5 years ago
- ☆24Jan 26, 2021Updated 5 years ago
- Insecure Deserialization, PDF and lab☆18Nov 19, 2019Updated 6 years ago
- Python script to launch burp scans automatically☆32Jul 18, 2021Updated 4 years ago
- API Pentesting notes.☆96Nov 4, 2024Updated last year
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆15Aug 2, 2021Updated 4 years ago
- Pentesting notes☆19Jan 31, 2026Updated last month
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Mar 15, 2019Updated 7 years ago
- Subvenkon is a subdomain enumerator from Venkon☆22Jun 22, 2020Updated 5 years ago
- A deep look at some recon methodologies and web-application vulnerabilities of my interest where I will merge all my notes gathered from …☆109Dec 13, 2022Updated 3 years ago
- parse ffuf & map endpoints to wordlists☆21Feb 25, 2021Updated 5 years ago
- Recon for Pentesting and BugBounty 🕵️☆14Jan 14, 2026Updated 2 months ago
- A small pentesting lab for Azure☆10Apr 19, 2019Updated 6 years ago
- ☆32Apr 6, 2021Updated 4 years ago
- Some of my bug bounty tools☆52Oct 23, 2019Updated 6 years ago
- CVE-2020-8515-PoC☆14Mar 30, 2020Updated 5 years ago
- Bash script to automate Bug Bounty Reconnaissance☆45Jan 3, 2021Updated 5 years ago
- ☆21Mar 4, 2021Updated 5 years ago
- Pipe different tools with google dork Scanner☆56Jun 25, 2020Updated 5 years ago
- Functions and other Code Snippets often found in Offensive Code or Malware☆22Apr 20, 2015Updated 10 years ago
- Generate wordlists for fuzzing API method names☆55Oct 16, 2020Updated 5 years ago
- Plugin for wordpress that transforms all iframes to a custom video player to watch xvideos, pornhub and redtube videos.☆13May 23, 2022Updated 3 years ago
- This repo hosts multiple codes, content, checklists etc which can help a penetration tester in a web application auditing.☆21Sep 14, 2023Updated 2 years ago
- Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.☆13Aug 4, 2025Updated 7 months ago
- ☆18Oct 4, 2020Updated 5 years ago
- ThreadsApp is a web application built with a purpose of helping people learn web application security.☆17Nov 22, 2024Updated last year
- My bug bounty notes☆35Apr 10, 2021Updated 4 years ago
- Explorer is a very useful tool which will help you in the Recon phase in Bug Bounty hunting or Web Pentesting. It can perform a lot of th…☆23Sep 26, 2020Updated 5 years ago
- Customized docker images generation toolkit☆25Oct 14, 2021Updated 4 years ago
- An entry level resource to learning bug bounty.☆28Apr 11, 2018Updated 7 years ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆294Nov 30, 2019Updated 6 years ago