Splint3r7's repositories
subdomainsEnumerator
A docker image which will enumerate, sort and unique the results of various subdomains enumeration tools.
Vulnhub-Machine-Dr34d
Official Writeup of Vulnhub Dr34d Machine
awesome-ruby-security
Awesome Ruby Security resources
base-x
Encode/decode any base
dora
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
dr34d
Recon tool by Hassan Khan Yusufzai
express
Fast, unopinionated, minimalist web framework for node.
grapghql-rails
Learning graphql for pentesting
Insecure-Firebase-Exploit
A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
npm-account-hijacking-scanner
Identify NPM dependencies vulnerable to account hijacking
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Pyrebase
A simple python wrapper for the Firebase API.
RailsRoutes
Ruby on Rails Routes for Parsing and Penetration Testing
rubyonrails-buggyapp
Ruby on rails buggy web application
schemasafe
A reasonably safe JSON Schema validator with draft-04/06/07/2019-09/2020-12 support.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
truffleHog
Searches through git repositories for high entropy strings and secrets, digging deep into commit history
Vajra
Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfaces.
wordlists2
wordlists2
XSStrike
Most advanced XSS scanner.