SayDoo's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
awsScrape
A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Blind-XSS-Manager
Never forget where you inject.
BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
chatgpt-prompts-bug-bounty
ChatGPT Prompts for Bug Bounty & Pentesting
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
columbus
An advanced subdomain discovery service with fast, powerful and easy to use API and DNS history.
CrackMapExec
A swiss army knife for pentesting networks
Dobby
a lightweight, multi-platform, multi-architecture hook framework.
googleplay
Download APK from Google Play or send API requests
intrigue-core
Discover Your Attack Surface!
obsidian-osint-templates
These templates are suggestions of how the Obsidian notetaking tool can be used during an OSINT investigation. The example data in those files should allow you to make some connections (see what I did there?) between how you record your data during an investigation and some of what the tool can offer FOR FREE!
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Pen-Andro
Script to Automate installtion of Apps ,frida server and moving Burpsuite certificate to root folder
Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
pentest-tools
A collection of custom security tools for quick needs.
public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
Recon_scripts
Recon scripts for Red Team and Web blackbox auditing
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
robodroid
Manage (and soon deploy) Android machines with pre-defined behaviors for Cyber Range environments.
rosso
Data parsers and formatters
security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
smartrecon
smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter
tls
low-level access to the ClientHello for mimicry purposes
visual-chatgpt
VisualChatGPT
waf-bypass
Check your WAF before an attacker does this one