0xtavian

resolveDomains

Given a list of domains, you resolve them and get the IP addresses.

brevityrecon

fleex

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

cent

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

DefaultCreds-cheat-sheet

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

extended-ssrf-search

Smart ssrf scanner using different methods like parameter brute forcing in post and get...

gee

🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addition, it was written as go

Findomain

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

pentesting-dockerfiles

Pentesting/Bugbounty Dockerfiles.

huntkit

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

mad-metasploit

Metasploit custom modules, plugins, resource script and.. awesome metasploit collection

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

httpx2bbrf

Simple tool to send the json output from HTTPX to BBRF

container_sec_workstation

bbrf-client

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Multi-Cloud-Orchestration-with-Python

kube_security_lab

Bug-Bounty-Toolz

BBT - Bug Bounty Tools

reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

leaky-paths

A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

bounty-targets-data

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

ivre

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.

dostackbufferoverflowgood

scantron

A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.