Fugitif's repositories
Log4j2-CVE-2021-44228
Remote Code Injection In Log4j
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
android_application_analyzer
The tool is used to analyze the content of the android application in local storage.
ApacheTomcatScanner
A python script to scan for Apache Tomcat server vulnerabilities.
ApachSAL
It's a vulnerability scanner tool for test Apache Path Traversal 👾
apkurlgrep
Extract endpoints from APK files
awesome-android-security
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
Awesome-GPT-Agents
A curated list of GPT agents for cybersecurity
conti-leaks-englished
Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
dalfox
🌙🦊 DalFox is an powerful open source XSS scanning tool and parameter analyzer, utility
git-scanner
A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
iblessing
iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.
interactsh-collaborator
Burpsuite plugin for Interact.sh
LeakLooker
Find open databases - Powered by Binaryedge.io
MagentoScanner
Magento Security Scanner
malicious-pdf
Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator
match-replace-burp
Useful Match and Replace BurpSuite Rules
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) is a powerful web interface that helps you to manipulate Android Java Classes and Methods at Runtime
s3viewer
Publicly Open Amazon AWS S3 Bucket Viewer
scan4all
基于优化后的vscan,继续走更多集成、自动化功能
sheye
Opensource assets and vulnerability scanning tool
TheTimeMachine
Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not
tlsx
Fast and configurable TLS grabber focused on TLS based data collection.
webapp-wordlists
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.