stevemcilwain / secretsLinks
Offsec Pentest and Bug Bounty Notes
☆25Updated 5 years ago
Alternatives and similar repositories for secrets
Users that are interested in secrets are comparing it to the libraries listed below
Sorting:
- My recon script☆50Updated 6 years ago
- A tool for testing subdomain takeover possibilities at a mass scale.☆49Updated 4 years ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆59Updated 3 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- ☆38Updated 5 years ago
- a tool that compiles a csv of all h1 program stats☆47Updated 2 years ago
- Send notifications on different channels such as Slack, Telegram, Discord etc.☆39Updated 2 years ago
- Framework to automate Bug Bounty Reconnaissance☆43Updated 4 years ago
- Recon Custom WordList Ganerator☆58Updated 5 years ago
- Single-WebApp-Target essentials testing methodology tool starting at recon-information gathering for the juicy stuff ended up in exploita…☆23Updated 4 years ago
- Get all the CNs from a list of domains☆45Updated 4 years ago
- commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …☆40Updated 4 years ago
- A collection of scripts for bug-bounty related stuff☆39Updated 5 years ago
- ☆48Updated 4 years ago
- Virtual host wordlist☆51Updated 4 years ago
- ☆57Updated 5 years ago
- Get all possible href | src | url from target url or domain☆40Updated 5 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆58Updated 5 years ago
- Literally spray blind xss payloads everywhere.☆26Updated 3 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆27Updated 3 years ago
- sub domain wild card filtering tool☆40Updated 5 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 5 years ago
- A BurpSuite plugin for BBRF☆25Updated last year
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 4 years ago
- Bug Bounty Tools☆34Updated 5 years ago
- XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…☆62Updated 4 years ago
- ☆38Updated 6 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆25Updated 5 years ago
- ☆24Updated 4 years ago