tamimhasan404 / Oneliner404View external linksLinks
Some oneliners with descriptions and Regex that I frequently use while doing bug hunting. More to come ππ
β22Dec 24, 2022Updated 3 years ago
Alternatives and similar repositories for Oneliner404
Users that are interested in Oneliner404 are comparing it to the libraries listed below
Sorting:
- Script that download 37+ open source nuclei templatesβ45Sep 2, 2022Updated 3 years ago
- Python script that generates Visual Basic Script (VBS) stagers for executing PowerShell scripts directly from specified URLs. It providesβ¦β13May 19, 2024Updated last year
- It grep subdomains, email/username, build custom wordlist etc from gau resultsβ50Nov 4, 2022Updated 3 years ago
- Speed-up your hunting with google dorksππβ21Sep 8, 2022Updated 3 years ago
- β12Aug 5, 2021Updated 4 years ago
- Chart-Of-Wordlist helps to create your own custom wordlist. Also in one repository, you can find a list of awesome wordlist.β61Mar 29, 2022Updated 3 years ago
- This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScrβ¦β14Oct 18, 2024Updated last year
- Mrco24-Lfi-Scanner is a high-speed Local File Inclusion (LFI) vulnerability scanning tool developed in the Go programming language. It's β¦β13Dec 16, 2023Updated 2 years ago
- β30Jun 6, 2024Updated last year
- β13Jun 12, 2023Updated 2 years ago
- Real world bug bounty wordlistsβ116Jul 20, 2023Updated 2 years ago
- A solid recon tool I use personally.β30May 12, 2023Updated 2 years ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from targetβ32Jul 21, 2024Updated last year
- Powershell modules and commands that come in handy for pentests and red team assessments.β18Oct 31, 2018Updated 7 years ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflectβ¦β36Nov 3, 2025Updated 3 months ago
- Cobalt Strike BOFSβ16Dec 20, 2023Updated 2 years ago
- Basic guide for performing a Physical PenTest - Nist 800-12, 800-53, 800-115, 800-152β22Jan 1, 2023Updated 3 years ago
- β18Jun 28, 2020Updated 5 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, β¦β35Dec 13, 2023Updated 2 years ago
- A tool to discover domains using crt.sh site (certificate transparency logs).β15Aug 1, 2019Updated 6 years ago
- Multi-target unauthenticated RCE scanner for CVE-2025-34085 affecting WordPress Simple File List plugin. Uploads, renames, and triggers Pβ¦β32Jul 13, 2025Updated 7 months ago
- βββββββ βββββββββββββββ ββββββββββββββββββββββββ ββββββββββββββ βββ βββ ββββββββββββββ βββ βββ βββ βββββββββββββββββββ βββ ββββββββ¦β11Feb 17, 2022Updated 3 years ago
- N0aziXss Origin Recon πβ23Dec 16, 2025Updated 2 months ago
- Subdomain discovery using Sublist3r, certspotter, crt.sh , censys and amass . Subdomain bruteforcing using Gobuster and Resolve hosts usiβ¦β16Oct 8, 2024Updated last year
- Small but effective wordlist for brute-forcing and discovering hidden things.β156Aug 14, 2023Updated 2 years ago
- Here I am trying to show you some cheat-sheet of nmap. Which may help you on penetration testing and bug hunting.β20Dec 20, 2021Updated 4 years ago
- SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects infoβ¦β22Mar 16, 2023Updated 2 years ago
- Tool to fuzz for interesting vhost.β23Jan 8, 2025Updated last year
- Bug Bounty Recon Toolsβ28Apr 13, 2024Updated last year
- Various AD tools needed for penetration testing in one place.β24Jul 13, 2023Updated 2 years ago
- public dns server list for dmut projectβ18Nov 30, 2023Updated 2 years ago
- Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.β27Mar 27, 2025Updated 10 months ago
- Test the speed and reliability of a list of DNS serversβ22Dec 9, 2020Updated 5 years ago
- Updated Exploit - pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)β23Jul 23, 2024Updated last year
- β33Jun 19, 2021Updated 4 years ago
- my personal blogβ22Feb 10, 2026Updated last week
- This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurityβ22Apr 26, 2022Updated 3 years ago
- Some files for bruteforcing certain things.β24Jul 12, 2021Updated 4 years ago
- Bug Bounty Testing Essential Guideline : Startup Bug Huntersβ53Dec 21, 2020Updated 5 years ago