zigoo0 / Pemburu
Pemburu AKA GoldDigger.
☆71Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for Pemburu
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆131Updated last year
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 5 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆100Updated 4 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆253Updated 5 months ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆162Updated 5 years ago
- A collection of scripts to extend Burp Suite☆139Updated 5 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated last month
- XSS Hunter Burp Plugin☆149Updated 6 years ago
- ☆121Updated 7 years ago
- Actarus is a custom tool for bug bounty☆75Updated 5 years ago
- Resolve and quickly portscan a list of (sub)domains.☆85Updated 8 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions☆218Updated 2 years ago
- Payloads for CRLF Injection☆217Updated last month
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆36Updated 7 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆87Updated 10 years ago
- Usefull stuff from around teh internetz☆109Updated 7 years ago
- Repo of useful scripts☆104Updated 4 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆302Updated 6 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated last year
- Push notifications for passive DNS data☆107Updated 8 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆149Updated 3 years ago
- ☆273Updated 3 years ago
- Various Payload wordlists☆235Updated 4 years ago
- Pillage a git repo found in an accessible web root☆60Updated 13 years ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆82Updated 5 years ago
- Fuzzing Payloads to Assist in Web Application Testing.☆166Updated 5 years ago
- Albatar is a SQLi exploitation framework in Python☆132Updated 3 years ago
- The Bug Bounty Wiki☆169Updated 6 years ago