Octavian's starred repositories
resolveDomains
Given a list of domains, you resolve them and get the IP addresses.
public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
extended-ssrf-search
Smart ssrf scanner using different methods like parameter brute forcing in post and get...
pentesting-dockerfiles
Pentesting/Bugbounty Dockerfiles.
mad-metasploit
Metasploit custom modules, plugins, resource script and.. awesome metasploit collection
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
httpx2bbrf
Simple tool to send the json output from HTTPX to BBRF
bbrf-client
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
Bug-Bounty-Toolz
BBT - Bug Bounty Tools
leaky-paths
A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.