HadZzz

followers

following

stars

Hadzi Pamuji's starred repositories

cssInjection

Stealing CSRF tokens with CSS injection (without iFrames)

Language:HTMLGPL-2.031500

CSRF-PoC-Genorator

This is a simple CSRF Proof of Concept generator that supports multiple form encodings and methods

Language:HTMLGPL-2.03100

One-Liners

A collection of one-liners for bug bounty hunting.

crlfuzz

A fast tool to scan CRLF vulnerability written in Go

Language:GoMIT128700

awesome-oneliner-bugbounty

A collection of awesome one-liner scripts especially for bug bounty tips.

MIT256000

Conferences

Conference presentation slides

findom-xss

A fast DOM based XSS vulnerability scanner with simplicity.

Language:ShellApache-2.073800

XSSTRON

Electron JS Browser To Find XSS Vulnerabilities Automatically

Language:JavaScriptGPL-3.068200

nerdbug

Full Nuclei automation script with logic explanation.

Language:Shell200

rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Language:JavaScriptGPL-3.0200

hun7rex

Automate your recon process

Language:GoMIT200

xss_vibes

A modern tool written in Python that automates your xss findings.

Language:Python33000

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT5630500

Hob0Rules

Password cracking rules for Hashcat based on statistics and industry patterns

ShodanX

ShodanX is a tool to gather information of targets using shodan dorks⚡.

Language:PythonMIT14400

web-skills

A visual overview of useful skills to learn as a web developer

Language:JavaScriptNOASSERTION691800

bug-bounty-testing-essential-guideline-startup-bug-hunters

Bug Bounty Testing Essential Guideline : Startup Bug Hunters

4300

Awesome-Bugbounty-Writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Language:Python450100

HowToHunt

Collection of methodology and test case for various web vulnerabilities.

GPL-3.0599900

Galaxy-Bugbounty-Checklist

Tips and Tutorials for Bug Bounty and also Penetration Tests.

AllAboutBugBounty

All about bug bounty (bypasses, payloads, and etc)

oni

Oni: Modern Modal Editing - powered by Neovim

Language:TypeScriptMIT1135500

nvimdots

A well configured and structured Neovim.

Language:LuaBSD-3-Clause287300

learn-neovim-lua

Neovim 配置实战：从 0 到 1 打造自己的 IDE

Language:LuaMIT119300

modus-theme-vim

Port of modus-themes in neovim

Language:LuaMIT16000

CVE-2024-36401

GeoServer Remote Code Execution

Language:Python5900

Apepe

📲 Enumerate information from an app based on the APK file

Language:PythonMIT10400

complete-node-bootcamp

Starter files, final projects and FAQ for my Complete Node.js Bootcamp

Language:JavaScript302200

nvim

Contains configuration files of Neovim

Language:Lua100

ctf-katana

This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.