Emre Polat's repositories
awesome-bugbounty-tools
A curated list of various bug bounty tools
Awesome-Smart-Contract-Security
A curated list of Smart Contract Security materials and resources For Researchers
bugbounty-targets
An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.
cero
Scrape domain names from SSL certificates of arbitrary hosts
chromedp
A faster, simpler way to drive browsers supporting the Chrome DevTools Protocol.
Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods.
content
The content behind MDN Web Docs
cors
CORS Exploitation web-page
cURL_for_OSINT
cURL Tool Usage for OSINT (Open-Source Intelligence)
DAMN-VULNERABLE-DEFI-CTF
DAMN VULNERABLE DEFI CTF Solutions ✨
Facebook-BugBounty-Writeups
Collection of Facebook Bug Bounty Writeups
Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
github-subdomains
Find subdomains on GitHub
gitleaks
Protect and discover secrets using Gitleaks 🔑
inventory
Asset inventory on public bug bounty programs.
nuclearpond
Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
osv-scanner
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
RedEye
RedEye is a visual analytic tool supporting Red & Blue Team operations
rustle
A static analyzer for NEAR smart contract in Rust
SDRPlusPlus
Cross-Platform SDR Software
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
smart-contract-attack-vectors
A curated list of smart contract attack vectors
Smart-Contract-Auditing-Checklist
My checklist to smart contract auditing
up-http-tool
Simple HTTP listener for security testing
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
Web3-Security-CTFs
:lock_with_ink_pen: My solutions to Smart Contract Security Challenges
wordlists
Real-world infosec wordlists, updated regularly
XSStrike
Most advanced XSS scanner.