Mohammed AL jeaid's repositories
awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more
APTRS
Automated Penetration Testing Reporting System
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
FinalRecon
The Last Web Recon Tool You'll Need
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
katana
A next-generation crawling and spidering framework.
msprobe
Finding all things on-prem Microsoft for password spraying and enumeration.
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
playwright
Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API.
pocsploit
a lightweight, flexible and novel open source poc verification framework
pyscript
Home Page: https://pyscript.net Examples: https://pyscript.net/examples
rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
scan4all
vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
scilla
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
Sublist3r
Fast subdomains enumeration tool for penetration testers
Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
toxssin
An XSS exploitation command-line interface and payload generator.
unredacter
Never ever ever use pixelation as a redaction technique
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
waymore
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!
WebHackersWeapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
xnLinkFinder
A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target