BuildGK's repositories
RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
OneListForAll
Rockyou for web fuzzing
3klCon
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
HydraRecon
All In One, Fast, Easy Recon Tool
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
AllAboutBugBounty
All about bug websites (bypasses, payloads, and etc)
AutoRecon
Just a shell script I wrote to make recon easier for bug bounties.
Taken
Takeover AWS ips and have a working POC for Subdomain Takeover.
Findomain
The fastest and cross-platform subdomain enumerator, do not waste your time.
burp-bounty-profiles
Burp Bounty profiles compilation, feel free to contribute!
LazyRecon
An automated approach to performing recon for bug bounty hunting and penetration testing.
Automated-Scanner
Trying to make automated recon for bug bounties
SQLInjectionWiki
A wiki focusing on aggregating and documenting various SQL injection methods
chomp-scan
A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
bountyRecon
Just an initiative for automating bug bounty recon
Application-Security-Engineer-Interview-Questions
Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1
Rock-ON
Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.
OSCP-Prep
A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam
Cheatsheet-God
Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet
bashbunny-payloads
Payloads for the Hak5 Bash Bunny
pentest
:no_entry: offsec batteries included
OSCP
OSCP cheet sheet
cookieStealer
A cookie stealer disguised as a gif image
app-sec-wiki
Files for appsecwiki.com
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
AwesomeXSS
Awesome XSS stuff
public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups