stevemcilwain / secrets
Offsec Pentest and Bug Bounty Notes
☆24Updated 4 years ago
Alternatives and similar repositories for secrets:
Users that are interested in secrets are comparing it to the libraries listed below
- A collection of scripts for bug-bounty related stuff☆38Updated 4 years ago
- ☆24Updated 4 years ago
- ☆38Updated 4 years ago
- My recon script☆51Updated 5 years ago
- Framework to automate Bug Bounty Reconnaissance☆42Updated 4 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- Bug Bounty Tools☆34Updated 4 years ago
- Subvenkon is a subdomain enumerator from Venkon☆23Updated 4 years ago
- commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …☆40Updated 3 years ago
- Security test tool for Blind XSS☆26Updated 4 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- sub domain wild card filtering tool☆41Updated 4 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 3 years ago
- ☆48Updated 3 years ago
- Small script to check a list of domains against open redirect vulnerability☆26Updated 3 years ago
- Literally spray blind xss payloads everywhere.☆25Updated 2 years ago
- Wordlists for Bug Bounty☆25Updated 5 years ago
- A BurpSuite plugin for BBRF☆24Updated 2 months ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- Converts a hostname (or URI) to IP address using your local resolver☆24Updated 10 months ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Get all the CNs from a list of domains☆46Updated 3 years ago
- Tool for making it easy to collect dns results from the CLI☆39Updated 6 months ago
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆28Updated 4 years ago
- ☆56Updated 4 years ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆56Updated 2 years ago
- Send notifications on different channels such as Slack, Telegram, Discord etc.☆39Updated last year
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- Advanced Recon Tool☆26Updated 4 years ago