F-Alpha5's repositories
Apktool
A tool for reverse engineering Android apk files
bbht
A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
Browser-Pwning-
A proper well structured documentation for getting started with chrome pwning & v8 pwning
BurpCustomizer
Because just a dark theme wasn't enough!
Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
CrackMapExec
A swiss army knife for pentesting networks
FavFreak
Making Favicon.ico based Recon Great again !
ffuf
Fast web fuzzer written in Go
fuzz_with_emus
Why fuzzing with emulators is amazing
gofingerprint
GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
googletest
GoogleTest - Google Testing and Mocking Framework
grepTheCurl
One liner regex match to search inside JS files, using curl and grep!
hetty
Hetty is an HTTP toolkit for security research. It aims to become an open source alternative to commercial software like Burp Suite Pro, with powerful features tailored to the needs of the infosec and bug bounty community.
httpx
httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
Impost3r
đź‘»Impost3r -- A linux password thief
metasploit-framework
Metasploit Framework
Open_Redirect_Payload_List
Open Redirect Vulnerability Payload List
OSCP-Exam-Report-Template-Markdown
:orange_book: OSCP Exam Report Template in Markdown
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
powerlevel10k
A Zsh theme
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
Pwdb-Public
A collection of all the data i could extract from 1 billion leaked credentials from internet.
pwn-machine
The Pwning Machine
ReconPi
ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.
rengine
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
subscraper
Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomains to enumerate a list of subdomains for a given URL.
Tiny-XSS-Payloads
A collection of tiny XSS Payloads that can be used in different contexts.